CVE-2024-52271

HIGH Year: 2024
Weakness Type
CWE-451
View all →

Vulnerability Description

User Interface (UI) Misrepresentation of Critical Information vulnerability in Documenso allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects Documenso: through 1.8.0, >1.8.0 and Documenso SaaS (Hosted) as of 2024-12-05.

Related Vulnerabilities

CVE-2024-23708

CRITICAL
CVSS:9.8(Critical)

In multiple functions of NotificationManagerService.java, there is a possible way to not show a toast message when a clipboard message has been accessed. This could lead to local escalation of privile...

CWE-4512024

CVE-2020-9236

HIGH
CVSS:8.8(High)

There is an improper interface design vulnerability in Huawei product. A module interface of the impated product does not deal with some operations properly. Attackers can exploit this vulnerability t...

CWE-4512020

CVE-2021-22866

HIGH
CVSS:8.8(High)

A UI misrepresentation vulnerability was identified in GitHub Enterprise Server that allowed more permissions to be granted during a GitHub App's user-authorization web flow than was displayed to the ...

CWE-4512021

CVE-2021-41598

HIGH
CVSS:8.8(High)

A UI misrepresentation vulnerability was identified in GitHub Enterprise Server that allowed more permissions to be granted during a GitHub App's user-authorization web flow than was displayed to the ...

CWE-4512021

CVE-2024-52269

HIGH
CVSS:8.1(High)

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. The SaaS AI assistant ignores hidden content that is rendered after signing, misleading...

CWE-4512024