Yes if you use .onion address the real site cant be spoofed by an exit node
It still risks the exit node being able to see traffic (including sensitive data). Tor is just had enough exploits I would be afraid to use it for logging into something important.
No it doesn't. Hidden servers do not involve exit nodes at all, and all traffic to hidden servers is encrypted with that hidden server's public key, so
no Tor nodes can see it. Please stop posting false information.