Lucene search
+L

136 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 2:58 p.m.5 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.8AI score0.00436EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/24 12:30 a.m.5 views

EUVD-2026-14654

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.7AI score0.00436EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/23 11:25 p.m.3 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.7AI score0.00436EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.10 views

PT-2026-27266

Name of the Vulnerable Software and Affected Versions Contest Gallery plugin for WordPress versions through 28.1.5 Description The Contest Gallery plugin for WordPress is susceptible to an authentication bypass, potentially allowing unauthorized takeover of administrator accounts. This occurs...

8.1CVSS5.8AI score0.00436EPSS
Exploits0References9
Veracode
Veracode
added 2026/03/21 5:28 a.m.9 views

Devise Has A Confirmable "change Email" Race Condition Permits User To Confirm Email They Have No Access To

Impact A race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the "reconfirmable" option the default when using Confirmable with email changes. By sending two concurrent email change requests, an...

6CVSS5.9AI score0.00275EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-32700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to...

6CVSS5.9AI score0.00275EPSS
Exploits0References3
NVD
NVD
added 2026/03/18 9:16 p.m.5 views

CVE-2026-32700

Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using...

6CVSS0.00275EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/18 9:16 p.m.6 views

CVE-2026-32700

Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using...

6CVSS5.9AI score0.00275EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/18 8:55 p.m.5 views

CVE-2026-32700

Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using...

6CVSS5.4AI score0.00275EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/17 5:24 p.m.9 views

Devise has a confirmable "change email" race condition permits user to confirm email they have no access to

Impact A race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using Confirmable with email changes. By sending two concurrent email change requests, an...

6CVSS5.8AI score0.00275EPSS
Exploits0References7Affected Software1
RubySec
RubySec
added 2026/03/16 12:0 a.m.9 views

Confirmable "change email" race condition permits user to confirm email they have no access to

Impact A race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the reconfirmable option the default when using Confirmable with email changes. By sending two concurrent email change requests, an...

6CVSS5.8AI score0.00275EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2026/02/03 11:15 a.m.5 views

CVE-2025-67853

A flaw was found in Moodle. A remote attacker could exploit a lack of proper rate limiting in the confirmation email service. This vulnerability allows attackers to more easily enumerate or guess user credentials, facilitating brute-force attacks against user accounts...

7.5CVSS5.9AI score0.00417EPSS
Exploits0References3
OSV
OSV
added 2026/02/02 8:42 a.m.4 views

BIT-DISCOURSE-2025-69289 Discourse has insecure default configuration that allows non-admin moderators to takeover any non-staff account via email change

Discourse is an open source discussion platform. A privilege escalation vulnerability in versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 allows a non-admin moderator to bypass email-change restrictions, allowing a takeover of non-staff accounts. This issue is patched in versions 3.5.4...

5.4CVSS5.4AI score0.00162EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/28 7:33 p.m.6 views

CVE-2025-69289

Discourse is an open source discussion platform. A privilege escalation vulnerability in versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 allows a non-admin moderator to bypass email-change restrictions, allowing a takeover of non-staff accounts. This issue is patched in versions 3.5.4...

5.1CVSS5.9AI score0.00162EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/28 7:33 p.m.37 views

CVE-2025-69289 Discourse has insecure default configuration that allows non-admin moderators to takeover any non-staff account via email change

Discourse is an open source discussion platform. A privilege escalation vulnerability in versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 allows a non-admin moderator to bypass email-change restrictions, allowing a takeover of non-staff accounts. This issue is patched in versions 3.5.4...

5.1CVSS0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/27 1:4 p.m.10 views

CVE-2025-55796

The openml/openml.org web application version v2.0.20241110 uses predictable MD5-based tokens for critical user workflows such as signup confirmation, password resets, email confirmation resends, and email change confirmation. These tokens are generated by hashing the current timestamp formatted ...

7.5CVSS7.1AI score0.00578EPSS
Exploits1References1
NVD
NVD
added 2025/11/18 5:16 p.m.16 views

CVE-2025-55796

The openml/openml.org web application version v2.0.20241110 uses predictable MD5-based tokens for critical user workflows such as signup confirmation, password resets, email confirmation resends, and email change confirmation. These tokens are generated by hashing the current timestamp formatted ...

7.5CVSS0.00578EPSS
Exploits1References3
CVE
CVE
added 2025/11/18 12:0 a.m.21 views

CVE-2025-55796

OpenML Frontend (openml.org) web app version v2.0.20241110 is affected by a token-generation flaw. Tokens used for signup confirmation, password resets, email confirmations/resends, and email changes are MD5-based and generated from the current timestamp (format "%d %H:%M:%S") without user-specif...

7.5CVSS6.7AI score0.00578EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/18 12:0 a.m.5 views

CVE-2025-55796

The openml/openml.org web application version v2.0.20241110 uses predictable MD5-based tokens for critical user workflows such as signup confirmation, password resets, email confirmation resends, and email change confirmation. These tokens are generated by hashing the current timestamp formatted ...

6.7AI score0.00578EPSS
Exploits1References3
CVE
CVE
added 2025/10/16 6:57 p.m.7 views

CVE-2025-62428

CVE-2025-62428 affects Drawing-Captcha APP. A Host Header Injection vulnerability exists in /register and /confirm-email endpoints, allowing an attacker to manipulate the Host header and generate malicious email confirmation links that redirect users to attacker-controlled domains. Impact concern...

9.3CVSS6.6AI score0.00423EPSS
Exploits0References2
Rows per page
Query Builder