Lucene search
K

25 matches found

Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.11 views

PT-2026-55450

Name of the Vulnerable Software and Affected Versions dragonfly versions prior to 2.4.4 Description The Dragonfly Manager fails to enforce authentication on specific API endpoints, allowing unauthenticated network-reachable attackers to retrieve sensitive OAuth client secrets. The issue occurs...

6.3CVSS6AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/17 10:1 a.m.8 views

CVE-2025-14844

The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 3.2.16 via the 'rcpstripecreatesetupintentforsavedcard' function due to missing capability check. Additionally, the plugin does not check a user-controlled...

8.2CVSS5.7AI score0.00419EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43431

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.0036EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43439

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00585EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-43432

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00576EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-43434

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.0058EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-43436

Malicious code in bioql PyPI...

8.2CVSS8.2AI score0.00585EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-43433

Malicious code in bioql PyPI...

8.2CVSS8.2AI score0.00574EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:14 a.m.11 views

CVE-2024-53253

Sentry is an error tracking and performance monitoring platform. Version 24.11.0, and only version 24.11.0, is vulnerable to a scenario where a specific error message generated by the Sentry platform could include a plaintext Client ID and Client Secret for an application integration. The Client ...

5.3CVSS6.8AI score0.00628EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:11 a.m.7 views

CVE-2023-39734

The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10mc Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS6.8AI score0.0058EPSS
Exploits1
CNNVD
CNNVD
added 2024/01/02 12:0 a.m.5 views

Line Security Breach

Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line version v.13.6.1, which originates from disclosing key credentials client secret to the client, allowing remote attackers to obtain the key...

5.3CVSS6.9AI score0.00376EPSS
Exploits0References4
OSV
OSV
added 2023/10/25 6:17 p.m.2 views

CVE-2023-39739

The leakage of the client secret in REGINA SWEETS&BAKERY Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS5.8AI score0.00585EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.4 views

CVE-2023-39736

The leakage of the client secret in Fukunagamemberscard Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS7.3AI score0.00585EPSS
Exploits1References3
OSV
OSV
added 2023/10/25 6:17 p.m.4 views

CVE-2023-39737

The leakage of the client secret in Matsuya Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS5.8AI score0.0059EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.5 views

CVE-2023-39740

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS7.3AI score0.00576EPSS
Exploits1References3
OSV
OSV
added 2023/10/25 6:17 p.m.7 views

CVE-2023-39740

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS5.8AI score0.00576EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.12 views

CVE-2023-39732

The leakage of the client secret in Tokueimaruwaiting Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS7.3AI score0.00576EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/10/25 6:17 p.m.4 views

CVE-2023-39733

The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS7.3AI score0.00574EPSS
Exploits1References3
OSV
OSV
added 2023/10/25 6:17 p.m.5 views

CVE-2023-39736

The leakage of the client secret in Fukunagamemberscard Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS5.8AI score0.00585EPSS
Exploits1References2
OSV
OSV
added 2023/10/25 6:17 p.m.6 views

CVE-2023-39735

The leakage of the client secret in UomasaSaijinews Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...

8.2CVSS5.8AI score0.00585EPSS
Exploits1References2
Rows per page
Query Builder