CWE-451
User Interface (UI) Misrepresentation of Critical Information
The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.
182 vulnerabilities with CWE-451
CVE-2025-8041
MEDIUM
Firefox < 141 - Info Disclosure
CVSS 5.3
CVE-2025-49755
MEDIUM
Microsoft Edge for Android - Info Disclosure
CVSS 4.3
CVE-2025-8583
MEDIUM
Google Chrome <139.0.7258.66 - XSS
CVSS 4.3
CVE-2025-43228
MEDIUM
iOS <18.6 - CSRF
CVSS 4.3
CVE-2025-43712
LOW
NPM Generator-jhipster < 8.9.0 - Improper Access Control
CVSS 2.9
CVE-2025-8043
CRITICAL
Firefox < 141 - SSRF
CVSS 9.8
CVE-2025-47964
MEDIUM
Microsoft Edge < - SSRF
CVSS 5.4
CVE-2025-47963
MEDIUM
Microsoft Edge - Spoofing
CVSS 6.3
CVE-2025-7021
MEDIUM
OpenAI Operator SaaS - Info Disclosure
CVSS 6.5
CVE-2025-5986
MEDIUM
Mailbox Link - Info Disclosure
CVSS 6.5
CVE-2025-5066
MEDIUM
Google Chrome <137.0.7151.55 - XSS
CVSS 6.5
CVE-2025-5065
MEDIUM
Google Chrome <137.0.7151.55 - XSS
CVSS 6.5
CVE-2025-29825
MEDIUM
Microsoft Edge - Info Disclosure
CVSS 6.5
CVE-2025-3859
MEDIUM
Mozilla Firefox Focus < 138.0 - Open Redirect
CVSS 6.1
CVE-2025-4086
MEDIUM
Thunderbird for Android - Info Disclosure
CVSS 6.5
CVE-2025-46394
LOW
BusyBox <1.37.0 - Info Disclosure
CVSS 3.2
CVE-2025-3523
MEDIUM
Thunderbird < 137.0.2-< 128.9.2 - Info Disclosure
CVSS 6.4
CVE-2025-32371
MEDIUM
DNN - Info Disclosure
CVSS 4.3
CVE-2025-29796
MEDIUM
Microsoft Edge for iOS - Info Disclosure
CVSS 4.7
CVE-2025-3074
MEDIUM
Google Chrome <135.0.7049.52 - XSS
CVSS 5.4
CVE-2025-3073
MEDIUM
Google Chrome <135.0.7049.52 - XSS
CVSS 5.4
CVE-2025-3072
MEDIUM
Google Chrome <135.0.7049.52 - XSS
CVSS 5.4
CVE-2025-30467
MEDIUM
Safari <18.4 - SSRF
CVSS 4.3
CVE-2025-1922
MEDIUM
Google Chrome <134.0.6998.35 - XSS
CVSS 4.3
CVE-2025-21259
MEDIUM
Microsoft Outlook - CSRF
CVSS 5.3
Details
Vulnerabilities
182