CVEbaza.plCWE DictionaryCWE-756
Common Weakness Enumeration

CWE-756

Missing Custom Error Page

Category: BaseCVE: 3
Description

The product does not return custom error pages to the user, possibly exposing sensitive information.

CVE vulnerabilities with CWE-756 (3)
7.1
CVSS
HIGH
CVE-2018-8913

Missing custom error page vulnerability in Synology Web Station before 2.1.3-0139 allows remote attackers to conduct phishing attacks via a crafted URL.

pub. 2019-04-01
5.3
CVSS
MEDIUM
CVE-2023-27998

A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2.1 and all versions of 1.1 and 1.0 may allow an unauthenticated attacker with the ability to navigate to the login GUI to gain sensitive information via navigating to specific HTTP(s) paths.

pub. 2023-09-13
5.3
CVSS
MEDIUM
CVE-2022-3175

Missing Custom Error Page in GitHub repository ikus060/rdiffweb prior to 2.4.2.

pub. 2022-09-13
Information
ID: CWE-756
Type: Base
Vulnerabilities: 3
MITRE CWE ↗
← CWE Dictionary
CWE-756 — Missing Custom Error Page | CWE Dictionary | CVEbaza.pl