• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-1021

CVE-2021-37971

February 23, 2023 by

Incorrect security UI in Web Browser UI in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

CVE-2021-3799

February 23, 2023 by

grav-plugin-admin is vulnerable to Improper Restriction of Rendered UI Layers or Frames

CVE-2021-37788

February 23, 2023 by

A vulnerability in the web UI of Gurock TestRail v5.3.0.3603 could allow an unauthenticated, remote attacker to affect the integrity of a device via a clickjacking attack. The vulnerability is due to insufficient input validation of iFrame data in HTTP requests that are sent to an affected device. An attacker could exploit this vulnerability by sending crafted HTTP packets with malicious iFrame data. A successful exploit could allow the attacker to perform a clickjacking attack where the user is tricked into clicking a malicious link.

CVE-2021-3731

February 23, 2023 by

LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to ‘clickjacking’. This allows an attacker to trick a targetted user to execute unintended actions.

CVE-2021-3734

February 23, 2023 by

yourls is vulnerable to Improper Restriction of Rendered UI Layers or Frames

CVE-2021-3660

February 23, 2023 by

Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an HTML entry. This may be used by a malicious website in clickjacking or similar attacks.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 16
  • Go to page 17
  • Go to page 18
  • Go to page 19
  • Go to page 20
  • Interim pages omitted …
  • Go to page 34
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE