Lucene search
K

1021 matches found

OSV
OSV
added 2026/03/04 9:34 p.m.5 views

CVE-2026-27802 Vaultwarden: Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager

Vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwardenrs. Prior to version 1.35.4, there is a privilege escalation vulnerability via bulk permission update to unauthorized collections by Manager. This issue has been patched in version 1.35.4...

8.3CVSS5.7AI score0.00293EPSS
Exploits0References3
CVE
CVE
added 2026/03/04 9:34 p.m.16 views

CVE-2026-27802

CVE-2026-27802 concerns Vaultwarden (unofficial Bitwarden-compatible server in Rust). A Privilege Escalation flaw allows a Manager (authorized user with access_all=false) to perform a bulk permission update that grants themselves access to collections they should not control. Multiple sources des...

8.3CVSS5.8AI score0.00293EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/03/04 8:7 p.m.4 views

GHSA-R32R-J5JQ-3W4M Vaultwarden has Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager

Summary A Manager account accessall=false was able to escalate privileges by directly invoking the bulk-access API against collections that were not originally assigned to them. The API allowed changing assigned=false to assigned=true, resulting in unauthorized access. Additionally, prior to the...

8.3CVSS6AI score0.00293EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/04 8:7 p.m.3 views

EUVD-2026-9502

Vaultwarden has Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager...

8.3CVSS5.9AI score0.00293EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/04 8:7 p.m.5 views

Vaultwarden has Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager

Summary A Manager account accessall=false was able to escalate privileges by directly invoking the bulk-access API against collections that were not originally assigned to them. The API allowed changing assigned=false to assigned=true, resulting in unauthorized access. Additionally, prior to the...

8.3CVSS6AI score0.00293EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.5 views

Vaultwarden 安全漏洞

Vaultwarden is an alternative implementation of the Bitwarden server API, developed by Daniel García. Versions of Vaultwarden prior to 1.35.4 contained a security vulnerability. This vulnerability stemmed from the ability of the Manager to access unauthorized collections through batch permission...

8.3CVSS5.8AI score0.00293EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.6 views

PT-2026-23071

Name of the Vulnerable Software and Affected Versions Vaultwarden versions prior to 1.35.4 Description A Manager account with limited permissions was able to gain elevated privileges by using the bulk-access API to modify permissions on collections they were not originally authorized to access. T...

8.3CVSS6AI score0.00293EPSS
Exploits0References7
EUVD
EUVD
added 2026/02/27 7:18 p.m.6 views

EUVD-2026-9062

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 59, collection item operations are vulnerable to authorization flaws, allowing a normal authenticated user to modify another user’s collection items. This affects both add item /actions/addtocollection.php due to missi...

7.1CVSS6AI score0.00263EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/27 7:18 p.m.4 views

CVE-2026-28354 ClipBucket v5 has IDOR in Collection Item Management

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 59, collection item operations are vulnerable to authorization flaws, allowing a normal authenticated user to modify another user’s collection items. This affects both add item /actions/addtocollection.php due to missi...

7.1CVSS6AI score0.00263EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/27 7:18 p.m.22 views

CVE-2026-28354 ClipBucket v5 has IDOR in Collection Item Management

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 59, collection item operations are vulnerable to authorization flaws, allowing a normal authenticated user to modify another user’s collection items. This affects both add item /actions/addtocollection.php due to missi...

7.1CVSS0.00263EPSS
Exploits1References1
OSV
OSV
added 2026/02/26 10:38 p.m.8 views

CVE-2026-28217 IDOR in GraphQL userCollection Query Exposes Other Users' Private Collections

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS6AI score0.00369EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/26 10:38 p.m.24 views

CVE-2026-28217 IDOR in GraphQL userCollection Query Exposes Other Users' Private Collections

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS0.00369EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/26 10:38 p.m.6 views

CVE-2026-28217 IDOR in GraphQL userCollection Query Exposes Other Users' Private Collections

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS6AI score0.00369EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2026/02/23 12:0 a.m.10 views

Vaultwarden -- Multiple vulnerabilities

The Vaultwarden project reports: GHSA-w9f8-m526-h7fh. This vulnerability would allow an attacker to access a cipher from a different user fully encrypted if they already know its internal UUID. GHSA-h4hq-rgvh-wh27. This vulnerability allows an attacker with manager-level access within an...

5.6AI score
Exploits0References1
CVE
CVE
added 2026/02/20 10:57 p.m.12 views

CVE-2019-25451

CVE-2019-25451 affects phpMoAdmin 1.1.5. The issue is a cross-site request forgery (CSRF) that can let an attacker trick an authenticated user into submitting GET requests to moadmin.php with parameters such as action, db, and collection, enabling unauthorized create/drop/repair of databases and ...

8.8CVSS5.3AI score0.00319EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.10 views

PT-2026-41683

Name of the Vulnerable Software and Affected Versions ChromaDB versions 1.0.0 through 1.5.8 Description A pre-authentication code injection issue exists in the ChromaDB Python project. An unauthenticated remote attacker can execute arbitrary code on the server by sending a request to the...

10CVSS6.2AI score0.12387EPSS
Exploits2References39
NVD
NVD
added 2026/02/06 10:16 p.m.4 views

CVE-2026-25574

Payload is a free and open source headless content management system. Prior to 3.74.0, a cross-collection Insecure Direct Object Reference IDOR vulnerability exists in the payload-preferences internal collection. In multi-auth collection environments using Postgres or SQLite with default...

5.4CVSS0.00193EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/06 9:4 p.m.6 views

CVE-2026-25574

Payload is a free and open source headless content management system. Prior to 3.74.0, a cross-collection Insecure Direct Object Reference IDOR vulnerability exists in the payload-preferences internal collection. In multi-auth collection environments using Postgres or SQLite with default...

5.4CVSS5.3AI score0.00193EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/02/06 9:4 p.m.6 views

EUVD-2026-5571

Payload is a free and open source headless content management system. Prior to 3.74.0, a cross-collection Insecure Direct Object Reference IDOR vulnerability exists in the payload-preferences internal collection. In multi-auth collection environments using Postgres or SQLite with default...

5.4CVSS5.3AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.7 views

Payload 安全漏洞

Payload is a headless CMS and application framework built using TypeScript, Node.js, React, and MongoDB. Versions of Payload prior to 3.74.0 have a security vulnerability. This vulnerability stems from an insecure direct object reference within the payload-preferences collection. In environments...

5.4CVSS5.8AI score0.00193EPSS
Exploits0References2
Rows per page
Query Builder