CVEs classified under CWE-348, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (40)
CVE-2026-48772 — CVSS 10.0 (critical): ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In versions 2.0.0 through 3.0.8, the ProxySQL MySQL frontend accepts…
CVE-2026-12249 — CVSS 9.0 (critical): An issue was discovered in Canonical ADSys upstream versions through v0.16.2. During Active Directory Certificate Services (AD CS)…
CVE-2025-69240 — CVSS 8.8 (high): Raytha CMS allows an attacker to spoof `X-Forwarded-Host` or `Host` headers to attacker controlled domain. The attacker (who knows the…
CVE-2025-55292 — CVSS 8.2 (high): Meshtastic is an open source mesh networking solution. In the current Meshtastic architecture, a Node is identified by their NodeID…
CVE-2026-43634 — CVSS 7.5 (high): HestiaCP versions 1.2.0 through 1.9.4 contain an IP spoofing vulnerability that allows unauthenticated remote attackers to bypass…
CVE-2026-35391 — CVSS 7.5 (high): Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, the getClientIP() function in…
CVE-2025-27913 — CVSS 7.5 (high): Passbolt API before 5, if the server is misconfigured (with an incorrect installation process and disregarding of Health Check results)…
CVE-2024-23105 — CVSS 7.5 (high): A Use Of Less Trusted Source [CWE-348] vulnerability in Fortinet FortiPortal version 7.0.0 through 7.0.6 and version 7.2.0 through 7.2.1…
CVE-2025-47424 — CVSS 7.1 (high): Retool (self-hosted) before 3.196.0 allows Host header injection. When the BASE_DOMAIN environment variable is not set, the HTTP host…
CVE-2020-37248 — CVSS 6.5 (medium): OfflineIMAP before 8.0.3 trusts the server with their STARTTLS capability prior to authentication, which allows STRIPTLS/man-in-the-middle…
CVE-2025-1245 — CVSS 6.5 (medium): Bypass Connection Restriction vulnerability in Hitachi Infrastructure Analytics Advisor (Data Center Analytics component), Hitachi Ops…
CVE-2022-4532 — CVSS 6.5 (medium): The LOGIN AND REGISTRATION ATTEMPTS LIMIT plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1…
CVE-2022-4537 — CVSS 6.5 (medium): The Hide My WP Ghost – Security Plugin plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including…
CVE-2026-40226 — CVSS 6.4 (medium): In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
CVE-2025-43918 — CVSS 6.4 (medium): SSL.com before 2025-04-19, when domain validation method 3.2.2.4.14 is used, processes certificate requests such that a trusted TLS…
CVE-2026-3635 — CVSS 6.1 (medium): Summary When trustProxy is configured with a restrictive trust function (e.g., a specific IP like trustProxy: '10.0.0.1', a subnet, a hop…
CVE-2026-59999 — CVSS 5.9 (medium): In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not.
CVE-2026-24910 — CVSS 5.9 (medium): In Bun before 1.3.5, the default trusted dependencies list (aka trust allow list) can be spoofed by a non-npm package in the case of a…
CVE-2026-44046 — CVSS 5.8 (medium): Use of Less Trusted Source vulnerability in Apache APISIX. Attacker can take advantage of wolf-rbac plugin under default configuration to…
CVE-2026-57942 — CVSS 5.3 (medium): LibreTranslate through 1.9.7, fixed in commit 397fd22, contains an IP spoofing vulnerability in the get_remote_address() function that…
CVE-2026-33690 — CVSS 5.3 (medium): WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `getRealIpAddr()` function in…
CVE-2026-22201 — CVSS 5.3 (medium): wpDiscuz before 7.6.47 contains an IP spoofing vulnerability in the getIP() function that allows attackers to bypass IP-based rate limiting…
CVE-2025-13694 — CVSS 5.3 (medium): The AA Block Country plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.0.1. This is due to the…
CVE-2025-53522 — CVSS 5.3 (medium): Movable Type contains an issue with use of less trusted source. If exploited, tampered email to reset a password may be sent by a remote…
CVE-2025-47149 — CVSS 5.3 (medium): The optional feature 'Anti-Virus & Sandbox' of i-FILTER contains an issue with improper pattern file validation. If exploited, the product…
CVE-2022-4534 — CVSS 5.3 (medium): The Limit Login Attempts (Spam Protection) plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 5.3…
CVE-2022-4529 — CVSS 5.3 (medium): The Security, Antivirus, Firewall – S.A.F plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including…
CVE-2022-4536 — CVSS 5.3 (medium): The IP Vault – WP Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1. This is due…
CVE-2024-6171 — CVSS 5.3 (medium): The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to IP Address Spoofing in all…
CVE-2024-0789 — CVSS 5.3 (medium): The WP Maintenance plugin for WordPress is vulnerable to IP Address Spoofing in all versions up to, and including, 6.1.9.2 due to…
CVE-2026-26927: Szafir SDK Web is a browser plug-in that can run SzafirHost application which download the necessary files when launched. In Szafir SDK Web…
CVE-2026-54289 — CVSS 4.8 (medium): Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.25, on AWS Lambda@Edge, CloudFront…
CVE-2025-32900 — CVSS 4.3 (medium): In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to temporarily change the displayed information…
CVE-2025-24856 — CVSS 4.2 (medium): An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4.0.0 for TYPO3. The account linking logic allows…
CVE-2024-54840 — CVSS 4.2 (medium): PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environment issues…
CVE-2023-2897 — CVSS 3.7 (low): The Brizy Page Builder plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.4.18. This is due to…
CVE-2025-58422 — CVSS 3.1 (low): RICOH Streamline NX versions 3.5.1 to 24R3 are vulnerable to tampering with operation history. If an attacker can perform a…
CVE-2026-46466 — CVSS 2.7 (low): Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version…
CVE-2025-48825 — CVSS 2.5 (low): RICOH Streamline NX V3 PC Client versions 3.5.0 to 3.7.0 contains an issue with use of less trusted source, which may allow an attacker who…