CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

Positive Technologies•added 2026/06/12 12:0 a.m.•11 views

PT-2026-48987

Name of the Vulnerable Software and Affected Versions Discourse versions 2026.1.0 through 2026.1.3 Discourse versions 2026.3.0 through 2026.3.0 Discourse versions 2026.4.0 through 2026.4.0 Description An issue exists in the Jobs::RedeliverWebHookEvents function where the MessageBus.publish call f...

4.3CVSS5.2AI score0.00211EPSS

Exploits0References6

SUSE Linux•added 2026/06/11 3:34 p.m.•6 views

Security update for tomcat11

This update for tomcat11 fixes the following issues Update to Tomcat 11.0.22: CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handling bsc1265162. CVE-2026-41293: HTTP/2 request headers not validated bsc1265163. CVE-2026-42498: WebSocket authentication header exposure bsc1265165...

8.7CVSS6.6AI score0.00996EPSS

Exploits2References28

RedhatCVE•added 2026/06/10 9:4 p.m.•12 views

CVE-2026-50508

Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.4AI score0.00662EPSS

Exploits0References1

Snyk•added 2026/05/29 5:16 p.m.•3 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via host resolution in the CLI authentication layer. An attacker can obtain authentication tokens intended for GitHub or GitHub Enterprise by causing authenticated requests to be sent to external hosts, as the ho...

9.1CVSS5.4AI score0.00289EPSS

Exploits0References2

EUVD•added 2026/05/15 7:44 p.m.•11 views

EUVD-2026-30620

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the validatecollectionaccess function uses an incomplete allowlist that only enforces ownership checks for collections matching user-memory- and file- patterns. All other collection...

4.3CVSS5.8AI score0.00221EPSS

Exploits1References1

Vulnrichment•added 2026/05/14 1:0 p.m.•6 views

CVE-2026-6478 PostgreSQL discloses MD5-hashed passwords via covert timing channel

Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. This does not affect scram-sha-256 passwords, the default in all supported releases. However, current databases may have MD5-hashed...

6.5CVSS5.8AI score0.00238EPSS

Exploits0References1

NVD•added 2026/05/04 6:16 p.m.•7 views

CVE-2026-42092

titra is an open source time tracking project. In version 0.99.52, the globalsettings Meteor publication returns all global settings without any admin or role check. Any authenticated user can subscribe via DDP and receive sensitive configuration fields such as googlesecret, openaiapikey, and...

6.5CVSS0.00219EPSS

Exploits0References1

Github Security Blog•added 2026/04/10 3:33 p.m.•5 views

Vikunja has Broken Access Control on Label Read via SQL Operator Precedence Bug

Summary The hasAccessToLabel function contains a SQL operator precedence bug that allows any authenticated user to read any label that has at least one task association, regardless of project access. Label titles, descriptions, colors, and creator information are exposed. Details The access contr...

4.3CVSS5.9AI score0.00272EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/04/07 7:51 p.m.•0 views

CVE-2026-39381

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.8.0-alpha.7 and 8.6.75, the GET /sessions/me endpoint returns Session fields that the server operator explicitly configured as protected via the protectedFields server option. Any...

5.3CVSS5.9AI score0.00193EPSS

Exploits0References4Affected Software1

CVE•added 2026/03/21 12:42 a.m.•14 views

CVE-2026-32897

OpenClaw versions prior to 2026.2.22 reuse gateway.auth.token as a fallback hash secret for owner-ID prompt obfuscation when commands.ownerDisplay is set to hash and commands.ownerDisplaySecret is unset. This allows attackers with access to system prompts sent to third-party model providers to de...

6.3CVSS5.8AI score0.00262EPSS

Exploits0References3Affected Software1

CVE•added 2026/02/10 3:4 a.m.•11 views

CVE-2026-24327

The CVE concerns SAP Strategic Enterprise Management (Balanced Scorecard in Business Server Pages) where a missing authorization check allowed an authenticated attacker to access information they should not view. The vulnerability impacts confidentiality with a LOW effect (C:L, I:N, A:N) and does...

4.3CVSS5.5AI score0.00221EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/01/15 6:16 p.m.•15 views

CVE-2026-23477

Rocket.Chat is an open-source, secure, fully customizable communications platform. In Rocket.Chat versions up to 6.12.0, the API endpoint GET /api/v1/oauth-apps.get is exposed to any authenticated user, regardless of their role or permissions. This endpoint returns an OAuth application, as long a...

7.7CVSS6.5AI score0.00306EPSS

Exploits1References1

Tenable Nessus•added 2026/01/08 12:0 a.m.•4 views

Amazon Linux 2023 : amazon-ssm-agent (ALAS2023-2025-1359)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1359 advisory. Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which a...

7.5CVSS6.6AI score0.00586EPSS

Exploits2References32

NVD•added 2025/12/19 5:15 p.m.•4 views

CVE-2024-49587

Glutton V1 service endpoints were exposed without any authentication on Gotham stacks, this could have allowed users that did not have any permission to hit glutton backend directly and read/update/delete data. The affected service has been patched and automatically deployed to all Apollo-managed...

9.1CVSS0.00288EPSS

Exploits0References1