Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 3 days ago10 views

CVE-2026-10284

The CVE-2026-10284 entry concerns DevaslanPHP Project-Management up to version 2.0.0-beta1. The vulnerability affects the Livewire Handler component, specifically the editComment and doDeleteComment functions within app/Filament/Resources/TicketResource/Pages/ViewTicket.php. The root cause is imp...

5.5CVSS5.5AI score0.00043EPSS
Exploits0References6
OSV
OSVadded 2026/02/23 6:23 p.m.2 views

GO-2026-4501 Gogs Allows Cross-Repository Comment Deletion via DeleteComment in gogs.io/gogs

Gogs Allows Cross-Repository Comment Deletion via DeleteComment in gogs.io/gogs. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners,...

5.1CVSS5.6AI score0.00017EPSS
Exploits1References3
OSV
OSVadded 2026/02/19 1:59 a.m.3 views

CVE-2026-25120 Gogs Allows Cross-Repository Comment Deletion via DeleteComment

Gogs is an open source self-hosted Git service. In versions 0.13.4 and below, the DeleteComment API does not verify that the comment belongs to the repository specified in the URL. This allows a repository administrator to delete comments from any other repository by supplying arbitrary comment...

5.1CVSS5.8AI score0.00017EPSS
Exploits1References4
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.2 views

Gogs 安全漏洞

Gogs Go Git Service is a Go-based self-service Git hosting service developed by the Gogs team. It supports creating and migrating public/private repositories, as well as adding and removing repository collaborators. Gogs versions 0.13.4 and earlier have security vulnerabilities. These...

5.1CVSS5.8AI score0.00017EPSS
Exploits1References2
Snyk
Snykadded 2026/02/17 6:40 p.m.1 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the DeleteComment function, accessible via the /:owner/:repo/issues/comments/:id/delete endpoint. A user can delete comments from other users' repositories by sending POST requests for known comment IDs...

5.3CVSS5.5AI score0.00017EPSS
Exploits1References2
Cvelist
Cvelistadded 2009/11/27 8:45 p.m.15 views

CVE-2009-4089

telepark.wiki 2.4.23 and earlier allows remote attackers to bypass authorization and 1 delete arbitrary pages via a modified pageID parameter to ajax/deletePage.php or 2 delete arbitrary comments via a modified pageID parameter to ajax/deleteComment.php...

6.8AI score0.10773EPSS
Exploits1References7
Exploit DB
Exploit DBadded 2007/07/19 12:0 a.m.19 views

GeoBlog MOD_1.0 - 'deletecomment.php?id' Arbitrary Comment Deletion

source: https://www.securityfocus.com/bid/24966/info geoBlog is prone to multiple security-bypass vulnerabilities because the application fails to properly validate users when deleting user blogs and comments. An attacker may exploit these issues to delete blogs and comments regardless of the...

7.4AI score
Exploits0
Rows per page
Query Builder