CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/22 12:31 a.m.•9 views

EUVD-2026-31352

Concrete CMS 9.5.0 and below is vulnerable to IDOR. The /ccm/frontend/conversations/messagedetail endpoint returns the full content of any conversation message. An unauthenticated attacker can enumerate all conversation messages, including messages from restricted pages, member-only areas, and th...

EUVD•added 2026/05/22 12:31 a.m.•11 views

EUVD-2026-31354

Concrete CMS 9.5.0 and below is vulnerable to IDOR. The '/ccm/frontend/conversations/messagepage' endpoint returns the full content of any conversation message. An unauthenticated attacker can enumerate all conversation messages, including messages from restricted pages, member-only areas, and th...

Github Security Blog•added 2026/05/22 12:31 a.m.•4 views

Concrete CMS is vulnerable to IDOR in AddMessage/UpdateMessage

Concrete CMS 9.5.0 and below is vulnerable to IDOR in AddMessage/UpdateMessage via attachments parameter which can lead to file permission bypass. The AddMessage and UpdateMessage conversation controllers accept user-supplied file attachment IDs and load files directly via $em-findFile::class,...

4.3CVSS5.7AI score0.00288EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/22 12:31 a.m.•8 views

EUVD-2026-31355

Concrete CMS 9.5.0 and below is subject to Insecure Direct Object Reference IDOR in the Express Entry Detail block via the exEntryID parameter. This IDOR leads to unauthorized access to all Express form submissions. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 6.3...

6.3CVSS5.8AI score0.00204EPSS

Positive Technologies•added 2026/05/22 12:0 a.m.•9 views

PT-2026-42797

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the getResultLogs API endpoint authorizes the caller against the provided typebotId but fetches logs solely by resultId without verifying that the result belongs to the authorized typebot, leading to IDOR. An authenticated attacker...

6.5CVSS5.9AI score0.00316EPSS

Exploits0References3

NVD•added 2026/05/21 10:16 p.m.•9 views

CVE-2026-7881

6.3CVSS0.00204EPSS

ATTACKERKB•added 2026/05/21 9:13 p.m.•6 views

CVE-2026-8337

Concrete CMS 9.5.0 and below is vulnerable to IDOR in surveys. To be vulnerable, a site would have to be configured in such a way that both public and private surveys are present on the site. An unauthenticated attacker can vote in the restricted survey by submitting the restricted optionID throu...

6.3CVSS5.8AI score0.00194EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/21 9:13 p.m.•6 views

CVE-2026-8337 Concrete CMS 9.5.0 and below is vulnerable to IDOR in surveys when sites are running concurrent public surveys and private surveys

6.3CVSS5.8AI score0.00194EPSS

CVE•added 2026/05/21 9:9 p.m.•13 views

CVE-2026-7881

CVE-2026-7881 affects Concrete CMS 9.5.0 and earlier. The vulnerability is an Insecure Direct Object Reference (IDOR) in the Express Entry Detail block via the exEntryID parameter, enabling unauthorized access to all Express form submissions. The CVSS v4.0 score is 6.3 (AV:N/AC:L/AT:P/PR:N/UI:N/V...

6.3CVSS5.8AI score0.00204EPSS

ATTACKERKB•added 2026/05/21 9:4 p.m.•6 views

CVE-2026-8238

Exploits0References2Affected Software1

ATTACKERKB•added 2026/05/21 9:1 p.m.•4 views

CVE-2026-8237

Exploits0References2Affected Software1

Cvelist•added 2026/05/21 9:1 p.m.•28 views

CVE-2026-8237 Concrete CMS 9.5.0 and below is vulnerable to IDOR in the`/ccm/frontend/conversations/message_detail` endpoint

6.3CVSS0.00201EPSS

CVE•added 2026/05/21 9:0 p.m.•19 views

CVE-2026-8239

Concrete CMS

6.3CVSS5.8AI score0.00195EPSS

CVE•added 2026/05/21 8:59 p.m.•17 views

CVE-2026-8236

Concrete CMS 9.5.0 and earlier is affected by an IDOR flaw due to a missing authentication gate on GET requests to /ccm/system/dialogs/file/usage/{fID}. The endpoint accepts an integer file ID and can disclose internal site structure data (page IDs, versions, URL paths) to unauthenticated users. ...

6.3CVSS5.7AI score0.00202EPSS

Cvelist•added 2026/05/21 1:21 p.m.•38 views

CVE-2025-13479 IDOR in PosCube's QR Menu

Authorization bypass through User-Controlled key vulnerability in PosCube Hardware Software and Consulting Ltd. QR Menu allows Exploitation of Trusted Identifiers. This issue affects QR Menu: through 21052026. NOTE: The vendor was contacted early about this disclosure but did not respond in any w...

7.5CVSS0.00251EPSS

EUVD•added 2026/05/21 1:26 a.m.•11 views

EUVD-2026-31206

The Broadstreet plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.52.2 via the getsponsoredmeta AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level...

4.3CVSS5.8AI score0.00219EPSS

Cvelist•added 2026/05/21 1:26 a.m.•44 views

CVE-2026-1881 Broadstreet <= 1.52.2 - Authenticated (Subscriber+) Private Post Meta Disclosure via get_sponsored_meta

4.3CVSS0.00219EPSS

Positive Technologies•added 2026/05/21 12:0 a.m.•10 views

PT-2026-42391

The Broadstreet plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.52.2 via the get sponsored meta AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level...

4.3CVSS5.8AI score0.00219EPSS

Exploits0References3

CNNVD•added 2026/05/21 12:0 a.m.•9 views

Concrete CMS 安全漏洞

Concrete CMS is an open-source content management system designed for teams. Concrete CMS versions 9.5.0 and earlier have security vulnerabilities, which stem from IDOR. These vulnerabilities may allow unauthorized parties to access confirmation messages and obtain ratings...

6.3CVSS5.8AI score0.00195EPSS