Lucene search
+L

57 matches found

nvd
nvd
added 2026/06/30 5:16 p.m.11 views

CVE-2026-58167

Nightingale n9e before 9.0.0-beta.2 exposes full datasource configurations, including plaintext database passwords, HTTP bearer tokens, HTTP basic-auth passwords, and mTLS client keys, to any authenticated low-privilege Standard role user through POST /api/n9e/datasource/list. The route is...

7.1CVSS0.00238EPSS
Exploits0References5
osv
osv
added 2026/06/23 2:54 p.m.3 views

CVE-2026-55568 Guzzle: Silent HTTPS-Proxy Downgrade to Cleartext

Guzzle is an extensible PHP HTTP client. Prior to 7.12.1, in certain configurations, traffic expected to be protected by TLS on the hop to the proxy is transmitted in cleartext. Proxy authentication credentials the Proxy-Authorization header, proxy userinfo in the proxy URL, or CURLOPTPROXYUSERPW...

5.9CVSS6AI score0.00106EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/12 12:0 a.m.18 views

PT-2026-48987

Name of the Vulnerable Software and Affected Versions Discourse versions 2026.1.0 through 2026.1.3 Discourse versions 2026.3.0 through 2026.3.0 Discourse versions 2026.4.0 through 2026.4.0 Description An issue exists in the Jobs::RedeliverWebHookEvents function where the MessageBus.publish call f...

4.3CVSS5.2AI score0.00211EPSS
Exploits0References6
suse
suse
added 2026/06/11 3:34 p.m.7 views

Security update for tomcat11

This update for tomcat11 fixes the following issues Update to Tomcat 11.0.22: CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handling bsc1265162. CVE-2026-41293: HTTP/2 request headers not validated bsc1265163. CVE-2026-42498: WebSocket authentication header exposure bsc1265165...

8.7CVSS6.6AI score0.01339EPSS
Exploits2References28
redhatcve
redhatcve
added 2026/06/10 9:4 p.m.19 views

CVE-2026-50508

Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.4AI score0.00662EPSS
Exploits0References1
osv
osv
added 2026/06/08 3:29 p.m.4 views

CVE-2026-46440 Flowise: Basic Auth Credentials Exposed via API

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, the checkBasicAuth endpoint validates credentials in plaintext without rate limiting and with direct comparison. This issue has been patched in version 3.1.2...

7.5CVSS5.9AI score0.00251EPSS
Exploits0References4
snyk
snyk
added 2026/05/29 5:16 p.m.5 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via host resolution in the CLI authentication layer. An attacker can obtain authentication tokens intended for GitHub or GitHub Enterprise by causing authenticated requests to be sent to external hosts, as the ho...

9.1CVSS5.4AI score0.00289EPSS
Exploits0References2
euvd
euvd
added 2026/05/15 7:44 p.m.17 views

EUVD-2026-30620

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the validatecollectionaccess function uses an incomplete allowlist that only enforces ownership checks for collections matching user-memory- and file- patterns. All other collection...

4.3CVSS5.8AI score0.00221EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2026/05/14 1:0 p.m.9 views

CVE-2026-6478 PostgreSQL discloses MD5-hashed passwords via covert timing channel

Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. This does not affect scram-sha-256 passwords, the default in all supported releases. However, current databases may have MD5-hashed...

6.5CVSS5.8AI score0.00558EPSS
Exploits0References1
nvd
nvd
added 2026/05/04 6:16 p.m.12 views

CVE-2026-42092

titra is an open source time tracking project. In version 0.99.52, the globalsettings Meteor publication returns all global settings without any admin or role check. Any authenticated user can subscribe via DDP and receive sensitive configuration fields such as googlesecret, openaiapikey, and...

6.5CVSS0.00219EPSS
Exploits0References1
github
github
added 2026/04/10 3:33 p.m.9 views

Vikunja has Broken Access Control on Label Read via SQL Operator Precedence Bug

Summary The hasAccessToLabel function contains a SQL operator precedence bug that allows any authenticated user to read any label that has at least one task association, regardless of project access. Label titles, descriptions, colors, and creator information are exposed. Details The access contr...

4.3CVSS5.9AI score0.00272EPSS
Exploits1References5Affected Software1
attackerkb
attackerkb
added 2026/04/07 7:51 p.m.1 views

CVE-2026-39381

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.8.0-alpha.7 and 8.6.75, the GET /sessions/me endpoint returns Session fields that the server operator explicitly configured as protected via the protectedFields server option. Any...

5.3CVSS5.9AI score0.00193EPSS
Exploits0References4Affected Software1
cve
cve
added 2026/03/21 12:42 a.m.25 views

CVE-2026-32897

OpenClaw versions prior to 2026.2.22 reuse gateway.auth.token as a fallback hash secret for owner-ID prompt obfuscation when commands.ownerDisplay is set to hash and commands.ownerDisplaySecret is unset. This allows attackers with access to system prompts sent to third-party model providers to de...

6.3CVSS5.8AI score0.00262EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/02/10 3:4 a.m.14 views

CVE-2026-24327

The CVE concerns SAP Strategic Enterprise Management (Balanced Scorecard in Business Server Pages) where a missing authorization check allowed an authenticated attacker to access information they should not view. The vulnerability impacts confidentiality with a LOW effect (C:L, I:N, A:N) and does...

4.3CVSS5.5AI score0.00221EPSS
Exploits0References2Affected Software1
redhatcve
redhatcve
added 2026/01/15 6:16 p.m.16 views

CVE-2026-23477

Rocket.Chat is an open-source, secure, fully customizable communications platform. In Rocket.Chat versions up to 6.12.0, the API endpoint GET /api/v1/oauth-apps.get is exposed to any authenticated user, regardless of their role or permissions. This endpoint returns an OAuth application, as long a...

7.7CVSS6.5AI score0.00306EPSS
Exploits1References1
nessus
nessus
added 2026/01/08 12:0 a.m.10 views

Amazon Linux 2023 : amazon-ssm-agent (ALAS2023-2025-1359)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1359 advisory. Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which a...

7.5CVSS6.6AI score0.00626EPSS
Exploits2References32
nvd
nvd
added 2025/12/19 5:15 p.m.10 views

CVE-2024-49587

Glutton V1 service endpoints were exposed without any authentication on Gotham stacks, this could have allowed users that did not have any permission to hit glutton backend directly and read/update/delete data. The affected service has been patched and automatically deployed to all Apollo-managed...

9.1CVSS0.00288EPSS
Exploits0References1
githubexploit
githubexploit
added 2025/12/16 12:20 a.m.156 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

CVE-2025-24071 This is a python PoC...

6.5CVSS6.6AI score0.25068EPSS
Exploits21
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6138

Malware in sbrugna...

9.8CVSS9.3AI score0.02925EPSS
Exploits1References5
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-1542

Malware in sbrugna...

2.1CVSS6.4AI score0.00343EPSS
Exploits0References4
Rows per page
Query Builder