Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-451

CWE-451

User Interface (UI) Misrepresentation of Critical Information

Parent: CWE-684 - Incorrect Provision of Specified Functionality

The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.

230 vulnerabilities with CWE-451

CVE-2025-43228 MEDIUM

Safari < 18.6 - Address Bar Spoofing via Malicious Website

CVE-2025-43712 LOW

JHipster < 8.9.0 - Privilege Escalation via Authorities Parameter Manipulation

CVE-2025-8043 CRITICAL

Firefox < 141.0 - URL Truncation Misrepresentation

CVE-2025-47964 MEDIUM

Microsoft Edge Chromium < 138.0.3351.55 - Spoofing

CVE-2025-47963 MEDIUM

Microsoft Edge Chromium < 138.0.3351.55 - Spoofing via UI Misrepresentation

CVE-2025-7021 MEDIUM

OpenAI Operator SaaS - Info Disclosure

CVE-2025-5986 MEDIUM

Thunderbird < 128.11.1 and 128.11.1-128.* and >=139.0.2 - Unauthenticated Arbitrary File Download via Crafted HTML Email

CVE-2025-5066 MEDIUM

Google Chrome < 137.0.7151.55 - UI Spoofing via Crafted HTML Page

CVE-2025-5065 MEDIUM

Google Chrome < 137.0.7151.55 - UI Spoofing via FileSystemAccess API

CVE-2025-29825 MEDIUM

Microsoft Edge Chromium < 136.0.3240.50 - User Interface Misrepresentation of Critical Information

CVE-2025-3859 MEDIUM

Mozilla Firefox Focus < 138.0 - User Interface Misrepresentation via URL Eliding

CVE-2025-4086 MEDIUM

Thunderbird for Android - Info Disclosure

CVE-2025-46394 LOW

BusyBox < 1.37.0 - User Interface Misrepresentation of Filenames via Terminal Escape Sequences

CVE-2025-3523 MEDIUM

Thunderbird < 137.0.2-< 128.9.2 - Info Disclosure

CVE-2025-32371 MEDIUM

DNN - Info Disclosure

CVE-2025-29796 MEDIUM

Microsoft Edge for iOS - Info Disclosure

CVE-2025-3074 MEDIUM

Google Chrome < 135.0.7049.52 - UI Spoofing via Crafted HTML Page

CVE-2025-3073 MEDIUM

Google Chrome < 135.0.7049.52 - UI Spoofing via Autofill

CVE-2025-3072 MEDIUM

Google Chrome < 135.0.7049.52 - UI Spoofing via Custom Tabs

CVE-2025-30467 MEDIUM

Safari < 18.4 - Address Bar Spoofing via Malicious Website

CVE-2025-1922 MEDIUM

Google Chrome < 134.0.6998.35 - UI Spoofing via Crafted HTML Page

CVE-2025-21259 MEDIUM

Microsoft Outlook < 4.2501.1 - Spoofing via User Interface Misrepresentation

CVE-2025-21404 MEDIUM

Microsoft Edge Chromium < 133.0.3065.51 - Spoofing

CVE-2025-21253 MEDIUM

Microsoft Edge for iOS and Android - User Interface Spoofing

CVE-2025-0451 MEDIUM

Google Chrome < 133.0.6943.53 - UI Spoofing via Crafted Chrome Extension

Previous Page 6 of 10 Next

Details

Vulnerabilities 230

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy