CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

CVE-2026-57521

Bitwarden Server before 2026.5.0 contains a broken access control vulnerability that allows any authenticated user to access arbitrary organization billing data by supplying an arbitrary organizationId to the PreviewInvoiceController endpoints without membership or authorization checks. Attackers...

5.3CVSS

Exploits0References5

Cvelist•added yesterday•12 views

CVE-2026-57521 Bitwarden Server < 2026.5.0 Broken Access Control via PreviewInvoiceController

5.3CVSS

Exploits0References5

ATTACKERKB•added yesterday•3 views

CVE-2026-57521

5.3CVSS6AI score

Exploits0References6

CVE•added yesterday•5 views

CVE-2026-57521

Bitwarden Server (pre-2026.5.0) has a broken access control in PreviewInvoiceController: any authenticated user can supply an arbitrary organizationId to access that organization’s billing data without membership checks. The issue stems from the missing ManageOrganizationBillingRequirement on the...

5.3CVSS6AI score

Exploits0References5

EUVD•added yesterday•4 views

EUVD-2026-39542

5.3CVSS6AI score

Exploits0References5

Cvelist•added 2 days ago•29 views

CVE-2026-56245 Supabase Capgo - Unauthenticated Cross-Tenant Build-Time Accounting Poisoning via record_build_time RPC

Supabase Capgo before 12.128.2 contains an authorization bypass vulnerability in the SECURITY DEFINER recordbuildtime RPC function that allows unauthenticated attackers to insert arbitrary build-time records. Attackers can exploit this by calling POST /rest/v1/rpc/recordbuildtime with a public AP...

8.8CVSS0.00269EPSS

Exploits0References2

EUVD•added 2 days ago•7 views

EUVD-2026-38742

8.8CVSS6AI score0.00269EPSS

Exploits0References2

NVD•added 2 days ago•5 views

CVE-2026-9709

The Cornerstone WordPress plugin before 7.8.9 does not enforce capability checks on one of its REST API routes, allowing any authenticated user to disclose the metadata of any other user, including roles, session token previews and stored billing/shipping fields. This affects the premium co...

7.7CVSS0.00219EPSS

Exploits0References1

EUVD•added 2 days ago•6 views

EUVD-2026-38696

7.7CVSS5.8AI score0.00219EPSS

Exploits0References1

EUVD•added 5 days ago•5 views

EUVD-2026-38166

Capgo before 12.128.2 contains a potential privilege escalation vulnerability in the public.applyusageoverage SECURITY DEFINER function, which performs sensitive billing operations without enforcing internal authorization checks no validation of auth.uid, org membership, or checkminrights. Becaus...

7.6CVSS6AI score0.00199EPSS

Exploits0References2

Cvelist•added 5 days ago•28 views

CVE-2026-56239 Capgo - Privilege Escalation via SECURITY DEFINER Function apply_usage_overage

7.6CVSS0.00199EPSS

Exploits0References2

Vulnrichment•added 2026/06/06 3:28 a.m.•7 views

CVE-2026-8611 Klamra Paycal for Aspaclaria <= 1.1.4 - Insecure Direct Object Reference to Authenticated (Subscriber+) Sensitive Information Exposure via 'invoice_id' Parameter

The Klamra Paycal for Aspaclaria plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.1.4 via the 'invoiceid' parameter due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with...

4.3CVSS5.6AI score0.00234EPSS

Exploits0References8

RedhatCVE•added 2026/06/05 7:21 p.m.•5 views

CVE-2026-3360

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to an Insecure Direct Object Reference in all versions up to, and including, 3.9.7. This is due to missing authentication and authorization checks in the payincompleteorder function. The function accepts an...

7.5CVSS5.5AI score0.00615EPSS

Exploits0References1

EUVD•added 2026/04/10 3:31 a.m.•2 views

EUVD-2026-21257

7.5CVSS5.9AI score0.00615EPSS

Exploits0References7

NVD•added 2026/04/10 2:16 a.m.•2 views

CVE-2026-3360

7.5CVSS0.00615EPSS

Exploits0References6

ATTACKERKB•added 2026/04/10 1:24 a.m.•2 views

CVE-2026-3360

7.5CVSS5.9AI score0.00615EPSS

Exploits0References7

Positive Technologies•added 2026/04/10 12:0 a.m.•4 views

PT-2026-31846

Name of the Vulnerable Software and Affected Versions Tutor LMS versions through 3.9.7 Description The Tutor LMS plugin for WordPress is susceptible to an Insecure Direct Object Reference issue. This is due to the absence of proper authentication and authorization checks within the pay incomplete...

7.5CVSS5.8AI score0.00615EPSS

Exploits0References10

CNNVD•added 2026/04/10 12:0 a.m.•4 views

WordPress plugin Tutor LMS – eLearning and online course solution 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

7.5CVSS5.8AI score0.00615EPSS

Exploits0References6

NVD•added 2026/03/26 12:16 a.m.•9 views

CVE-2026-33931

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, an Insecure Direct Object Reference IDOR vulnerability in the patient portal payment page allows any authenticated portal patient to access other patients' payment...

6.5CVSS0.00351EPSS

Exploits1References3

CVE•added 2026/03/25 11:36 p.m.•13 views

CVE-2026-33931

Vulnerability summary (CVE-2026-33931) : OpenEMR prior to version 8.0.0.3 contains an insecure direct object reference (IDOR) in the patient portal payment page. By manipulating the recid parameter in portal/portal_payment.php, any authenticated portal patient could access other patients’ payment...

6.5CVSS5.8AI score0.00351EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by