Lucene search
K

22 matches found

NVD
NVD
added 2026/06/26 10:16 p.m.16 views

CVE-2026-49984

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths for .. traversal before it converts Windows-style backslashes to forward slashes. An attacker can therefore smuggle a traversal sequence past...

7.7CVSS0.00386EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:58 p.m.9 views

CVE-2026-49869

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, AuthenticationFilter in Kestra OSS uses request.getPath.endsWith"/configs" to whitelist the public configuration endpoint from Basic Auth. Because the check is a suffix match rather than an exact path match...

10CVSS6.4AI score0.00684EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2026/06/26 8:58 p.m.3 views

CVE-2026-49869 Kestra: Unauthenticated Remote Code Execution via Authentication Bypass in `AuthenticationFilter`

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, AuthenticationFilter in Kestra OSS uses request.getPath.endsWith"/configs" to whitelist the public configuration endpoint from Basic Auth. Because the check is a suffix match rather than an exact path match...

10CVSS6.5AI score0.00684EPSS
Exploits2References3
CVE
CVE
added 2026/06/26 8:55 p.m.21 views

CVE-2026-49984

CVE-2026-49984 – Kestra : A path traversal vulnerability in the LocalStorage backend allows any authenticated user who can view an execution to read arbitrary files on the server. Before patching, the LocalStorage path validator mishandles Windows-style backslashes, letting an attacker smuggle tr...

7.7CVSS6AI score0.00386EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/06/26 8:55 p.m.3 views

CVE-2026-49984 Kestra: Path traversal in `LocalStorage` allows any authenticated user to read arbitrary server files via the execution file-download API (`\..\` bypasses the `..` guard)

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths for .. traversal before it converts Windows-style backslashes to forward slashes. An attacker can therefore smuggle a traversal sequence past...

7.7CVSS6.1AI score0.00386EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:54 p.m.7 views

CVE-2026-53576

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the authentication filter for the REST API @Filter"/api/v1/" treats any request whose path ends in /configs as the public instance-config endpoint and forwards it without a credential check. kestra addresse...

10CVSS5.8AI score0.00472EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2026/06/26 8:52 p.m.39 views

CVE-2026-53577 Kestra: Cross-Execution File Read via Preview Endpoint (IDOR)

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the previewFileFromExecution endpoint GET /api/v1/tenant/executions/executionId/file/preview contains an access control bypass that allows any authenticated user to read output files from any other executio...

6.5CVSS0.00263EPSS
Exploits1References1
OSV
OSV
added 2026/06/26 8:52 p.m.4 views

CVE-2026-53577 Kestra: Cross-Execution File Read via Preview Endpoint (IDOR)

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.21, the previewFileFromExecution endpoint GET /api/v1/tenant/executions/executionId/file/preview contains an access control bypass that allows any authenticated user to read output files from any other executio...

6.5CVSS6.1AI score0.00263EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.15 views

PT-2026-52984

Name of the Vulnerable Software and Affected Versions Kestra versions prior to 1.0.45 Kestra versions prior to 1.3.21 Description The authentication filter for the REST API endpoint /api/v1/ incorrectly treats any request path ending in /configs as a public instance-config endpoint, allowing it t...

10CVSS5.8AI score0.00472EPSS
Exploits2References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-38074

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00687EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.15 views

CVE-2023-41684

Cross-Site Request Forgery CSRF vulnerability in Felix Welberg SIS Handball plugin = 1.0.45 versions...

8.8CVSS7.1AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:56 a.m.7 views

CVE-2023-33924

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Felix Welberg SIS Handball allows SQL Injection.This issue affects SIS Handball: from n/a through 1.0.45...

9.8CVSS8.9AI score0.00687EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.7 views

WordPress plugin Realty Workstation 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.2CVSS8.2AI score0.00455EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/01/16 6:41 p.m.7 views

WordPress Realty Workstation plugin <= 1.0.45 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by ghsinfosec in WordPress Plugin Realty Workstation versions = 1.0.45...

8.2CVSS7AI score0.00455EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/10/28 12:15 p.m.4 views

CVE-2024-50489

Authentication Bypass Using an Alternate Path or Channel vulnerability in Realty Workstation allows Authentication Bypass.This issue affects Realty Workstation: from n/a through 1.0.45...

9.8CVSS5.8AI score0.00525EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.3 views

PT-2024-34266 · Unknown · Realty Workstation

Name of the Vulnerable Software and Affected Versions: Realty Workstation versions 1.0.0 through 1.0.45 Description: The issue is related to an Authentication Bypass Using an Alternate Path or Channel vulnerability in Realty Workstation, allowing unauthorized access. Recommendations: For versions...

9.8CVSS6.5AI score0.00525EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/10/25 8:22 a.m.5 views

WordPress Realty Workstation plugin <= 1.0.45 - Account Takeover vulnerability

Account Takeover vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin Realty Workstation versions = 1.0.45...

9.8CVSS7AI score0.00525EPSS
Exploits0Affected Software1
OSV
OSV
added 2023/11/06 9:15 a.m.5 views

CVE-2023-33924

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Felix Welberg SIS Handball allows SQL Injection.This issue affects SIS Handball: from n/a through 1.0.45...

9.8CVSS7.3AI score0.00687EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/06 12:0 a.m.6 views

PT-2023-24571 · Felix Welberg · Felix Welberg Sis Handball

Name of the Vulnerable Software and Affected Versions: Felix Welberg SIS Handball versions 1.0.0 through 1.0.45 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

9.8CVSS9.6AI score0.00687EPSS
Exploits0References3
OSV
OSV
added 2023/10/10 7:15 a.m.5 views

CVE-2023-41684

Cross-Site Request Forgery CSRF vulnerability in Felix Welberg SIS Handball plugin = 1.0.45 versions...

8.8CVSS5.8AI score0.00201EPSS
Exploits0References1
Rows per page
Query Builder