Lucene search
K

75 matches found

OSV
OSV
added 2026/06/26 11:33 p.m.3 views

GHSA-HMGP-W9JM-VP95 Subsonic API: any authenticated user can delete or read any other user's playlist (IDOR)

Summary In gonic, the Subsonic API endpoints /rest/deletePlaylist.view and /rest/getPlaylist.view perform no per-resource authorization. Once authenticated as any user admin or not, an attacker can: 1. Delete any playlist owned by any other user including admin by passing its id. 2. Read the full...

7.1CVSS5.8AI score0.00168EPSS
Exploits0References4
OSV
OSV
added 2026/06/25 8:13 a.m.2 views

SUSE-SU-2026:2627-1 Security update for python-PyJWT

This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments directly to urllib.request.urlopen and allows for SSRF and token forgery bsc1266798. - CVE-2026-48523: verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are...

7.4CVSS5.8AI score0.00394EPSS
Exploits4References9
OSV
OSV
added 2026/06/25 8:11 a.m.3 views

SUSE-SU-2026:2626-1 Security update for python-PyJWT

This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments directly to urllib.request.urlopen and allows for SSRF and token forgery bsc1266798. - CVE-2026-48523: verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are...

7.4CVSS5.7AI score0.00394EPSS
Exploits4References11
CVE
CVE
added 2026/06/19 7:8 p.m.26 views

CVE-2026-49338

The CVE covers gonic, a Subsonic-compatible music server. Before 0.21.0, Subsonic API endpoints /rest/deletePlaylist.view and /rest/getPlaylist.view allowed any authenticated user to delete or read any other user’s private playlist due to missing per-resource authorization. The playlist ID is bas...

7.1CVSS5.9AI score0.00168EPSS
Exploits0References2
OSV
OSV
added 2026/06/19 5:44 a.m.2 views

SUSE-SU-2026:22170-1 Security update for python-PyJWT

This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments directly to urllib.request.urlopen and allows for SSRF and token forgery bsc1266798. - CVE-2026-48523: verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are...

7.4CVSS5.8AI score0.00394EPSS
Exploits4References11
OSV
OSV
added 2026/06/19 5:44 a.m.2 views

SUSE-SU-2026:22220-1 Security update for python-PyJWT

This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments directly to urllib.request.urlopen and allows for SSRF and token forgery bsc1266798. - CVE-2026-48523: verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are...

7.4CVSS5.8AI score0.00394EPSS
Exploits4References11
OSV
OSV
added 2026/06/16 9:9 a.m.3 views

SUSE-SU-2026:22138-1 Security update for python-PyJWT

This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments directly to urllib.request.urlopen and allows for SSRF and token forgery bsc1266798. - CVE-2026-48523: verifier-side algorithm allow-list bypass when jwt.decode or jwt.decodecomplete are...

7.4CVSS5.3AI score0.00394EPSS
Exploits4References11
Github Security Blog
Github Security Blog
added 2026/06/15 7:29 p.m.47 views

PyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWS

!NOTE Practical impact depends on whether request body-size limits are enforced upstream proxy/web-server/framework. Deployments with typical body-size caps ≤2 MB bound the amplifier significantly; deployments accepting larger token inputs are more exposed. When verifying detached JWS tokens usin...

5.3CVSS5.5AI score0.00288EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/04 10:17 p.m.7 views

CVE-2026-48525

A flaw was found in PyJWT. A remote attacker can exploit this by supplying an arbitrarily large Base64URL payload segment when verifying detached JSON Web Signature JWS tokens using the unencoded-payload option. This forces excessive CPU work and memory allocations, leading to a Denial of Service...

5.3CVSS5.7AI score0.00288EPSS
Exploits1References4
OSV
OSV
added 2026/06/04 6:10 p.m.5 views

ROOT-APP-NPM-GHSA-RVG8-PWQ2-XJ7Q GHSA-rvg8-pwq2-xj7q in @rootio/base64url - Patched by Root

Root has patched GHSA-rvg8-pwq2-xj7q in the @rootio/base64url package for Root:npm. Multiple fixed versions available...

5.4AI score
Exploits0
OSV
OSV
added 2026/06/04 6:10 p.m.12 views

ROOT-APP-NPM-NSWG-ECO-428 NSWG-ECO-428 in @rootio/base64url - Patched by Root

Root has patched NSWG-ECO-428 in the @rootio/base64url package for Root:npm. Multiple fixed versions available...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.10 views

PT-2026-49162

Root has patched NSWG-ECO-428 in the @rootio/base64url package for Root:npm. Multiple fixed versions available...

5.3AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/30 1:59 a.m.15 views

SUSE CVE-2026-48525

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option "b64": false, RFC 7797, PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For...

7.5CVSS5.8AI score0.00288EPSS
Exploits1References9
Snyk
Snyk
added 2026/05/28 4:50 p.m.20 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the Base64URL decoding process. An attacker can cause excessive CPU and memory consumption by supplying an arbitrarily large payload segment when verifying detached JWS tokens wit...

7.5CVSS5.8AI score0.00288EPSS
Exploits1References2
PyPA
PyPA
added 2026/05/28 4:16 p.m.11 views

PYSEC-0000-CVE-2026-48525

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option "b64": false, RFC 7797, PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For...

5.3CVSS5.8AI score0.00288EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2026/05/28 3:11 p.m.9 views

CVE-2026-48525

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option "b64": false, RFC 7797, PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For...

5.3CVSS5.8AI score0.00288EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/05/28 3:11 p.m.9 views

CVE-2026-48525

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option "b64": false, RFC 7797, PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For...

5.3CVSS5.8AI score0.00288EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/05/28 3:11 p.m.56 views

CVE-2026-48525

PyJWT (Python) versions 2.8.0–2.12.1 expose an unauthenticated DoS when verifying detached JWS with the unencoded-payload option (b64: false, RFC 7797). PyJWT decodes the middle payload segment for detached-payload verification, then discards it and replaces it with the caller-provided detached_p...

5.3CVSS5.8AI score0.00288EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.9 views

PT-2026-34782

OpenClaw before 2026.3.31 contains a replay detection bypass vulnerability in webhook signature handling that treats Base64 and Base64URL encoded signatures as distinct requests. Attackers can re-encode Telnyx webhook signatures to bypass replay detection while maintaining valid signature...

6.3CVSS5.8AI score0.0033EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/23 12:0 a.m.19 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.3.31 contained security vulnerabilities. These vulnerabilities stemmed from a bypass vulnerability in the webhook signature processing mechanism. The vulnerability allowed attacke...

6.3CVSS5.8AI score0.0033EPSS
Exploits0References1
Rows per page
Query Builder