Lucene search
K

161620 matches found

EUVD
EUVD
added 2026/05/04 5:41 a.m.33 views

EUVD-2026-26895

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/04 5:41 a.m.3 views

CVE-2026-43859

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
Nuclei
Nuclei
added 2026/05/04 4:18 a.m.69 views

cPanel & WHM - Authentication Bypass via Session-File CRLF Injection

cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, and 11.136.0.5 contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel. id: CVE-2026-41940 info:...

9.8CVSS6AI score0.981EPSS
Exploits64References5
Snyk
Snyk
added 2026/05/04 4:13 a.m.6 views

Improper Authentication

Overview prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Improper...

6.9CVSS5.8AI score0.00453EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/04 4:12 a.m.4 views

Missing Authentication for Critical Function

Overview prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Missing...

7.5CVSS5.8AI score0.00421EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/04 3:31 a.m.10 views

Prefect Auth Bypass via endswith() Health Check Exemption

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2026/05/04 3:31 a.m.5 views

GHSA-6RR6-V7CJ-MXPG Prefect Auth Bypass via endswith() Health Check Exemption

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References10
NVD
NVD
added 2026/05/04 3:16 a.m.23 views

CVE-2026-7723

A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the component WebSocket Endpoint. Executing a manipulation can lead to missing authentication. The attack may be performed from remote. The exploit has been published and may be...

7.5CVSS0.00421EPSS
Exploits0References8
NVD
NVD
added 2026/05/04 3:16 a.m.24 views

CVE-2026-7722

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS0.00453EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/04 2:30 a.m.51 views

CVE-2026-7723 PrefectHQ prefect WebSocket Endpoint in missing authentication

A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the component WebSocket Endpoint. Executing a manipulation can lead to missing authentication. The attack may be performed from remote. The exploit has been published and may be...

7.5CVSS0.00421EPSS
Exploits0References8
CVE
CVE
added 2026/05/04 2:30 a.m.25 views

CVE-2026-7723

Technical details about CVE-2026-7723 are not publicly available in the provided documents. Monitor for official updates and patches; upgrading to 3.6.14 is mentioned in the description as a fix.

7.5CVSS6.5AI score0.00421EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/04 2:30 a.m.8 views

CVE-2026-7723

A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the component WebSocket Endpoint. Executing a manipulation can lead to missing authentication. The attack may be performed from remote. The exploit has been published and may be...

7.5CVSS6.5AI score0.00421EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/04 2:30 a.m.3 views

CVE-2026-7723 PrefectHQ prefect WebSocket Endpoint in missing authentication

A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the component WebSocket Endpoint. Executing a manipulation can lead to missing authentication. The attack may be performed from remote. The exploit has been published and may be...

7.5CVSS6.5AI score0.00421EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/04 2:30 a.m.8 views

EUVD-2026-26877

A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the component WebSocket Endpoint. Executing a manipulation can lead to missing authentication. The attack may be performed from remote. The exploit has been published and may be...

7.5CVSS6.5AI score0.00421EPSS
Exploits0References8
CVE
CVE
added 2026/05/04 2:15 a.m.26 views

CVE-2026-7722

CVE-2026-7722 affects PrefectHQ Prefect up to 3.6.21, specifically the Health Check API at /api/health where the endswith function is implicated. The issue enables a remotely carried out manipulation resulting in improper authentication. Public exploitation is indicated in the description. A patc...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/05/04 2:15 a.m.4 views

CVE-2026-7722 PrefectHQ prefect Health Check API health endswith improper authentication

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/04 2:15 a.m.5 views

CVE-2026-7722

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/05/04 2:15 a.m.44 views

CVE-2026-7722 PrefectHQ prefect Health Check API health endswith improper authentication

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS0.00453EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/04 2:15 a.m.20 views

EUVD-2026-26875

A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of the component Health Check API. Performing a manipulation results in improper authentication. The attack is possible to be carried out remotely. The exploit is now public...

6.9CVSS5.7AI score0.00453EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/05/04 1:17 a.m.76 views

Exploit for Authentication Bypass Using an Alternate Path or Channel in Frangoteam Fuxa

CVE-2025-69985: Exploit para Autenticación Bypass a RCE en FUX...

9.8CVSS5.8AI score0.05633EPSS
Exploits7
Rows per page
Query Builder