CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 7 hours ago•1 views

CVE-2026-43926

Exploits0References3Affected Software1

EUVD•added 7 hours ago•2 views

EUVD-2026-34255

CVE•added 7 hours ago•5 views

CVE-2026-43926

FOSSBilling prior to 0.8.0 allows probing the password-reset flow because the non-API controller for /client/reset-password-confirm/:hash is not rate-limited like /api/* endpoints. The endpoint may reveal valid vs invalid tokens (200 vs 302), enabling unlimited token guessing until expiry. Token ...

Cvelist•added 7 hours ago•4 views

CVE-2026-43926 FOSSBilling's password reset confirmation endpoint lacks rate limiting

6.3CVSS

Vulnrichment•added 7 hours ago•3 views

CVE-2026-43926 FOSSBilling's password reset confirmation endpoint lacks rate limiting

Positive Technologies•added 20 hours ago•4 views

PT-2026-46229

Cvelist•added 2026/05/28 2:13 p.m.•23 views

CVE-2026-35675 phpMyFAQ - Authentication Bypass via Missing Password Reset Token in /api/user/password/update

phpMyFAQ before 4.1.3 contains an authentication bypass vulnerability in the password reset endpoint that allows unauthenticated attackers to reset any user account password without token verification or email confirmation. Attackers can enumerate valid usernames, obtain plaintext passwords via...

8.8CVSS0.00129EPSS

NVD•added 2026/05/26 6:16 p.m.•10 views

CVE-2026-44707

Chatwoot is a customer engagement suite. From 2.14.0 to before 4.13.0, a Pre-Account Takeover Pre-ATO vulnerability existed in Chatwoot's authentication flow. Because email confirmation was not enforced before an account became usable, an attacker could pre-register an email address they did not...

6.8CVSS0.00043EPSS

Cvelist•added 2026/05/26 5:10 p.m.•30 views

CVE-2026-44707 Chatwoot: Pre-Account Takeover via OAuth on Unconfirmed Accounts

6.8CVSS0.00043EPSS

RedhatCVE•added 2026/03/26 2:58 p.m.•2 views

CVE-2026-4021

The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in all versions up to, and including, 28.1.5. This is due to the email confirmation handler in users-registry-check-after-email-or-pin-confirmation.php using the user's email strin...

8.1CVSS5.8AI score0.00286EPSS

Exploits0References1

EUVD•added 2026/03/24 12:30 a.m.•1 views

EUVD-2026-14654

8.1CVSS5.7AI score0.00286EPSS

Exploits0References7

ATTACKERKB•added 2026/03/23 11:25 p.m.•0 views

CVE-2026-4021

8.1CVSS5.7AI score0.00286EPSS

Exploits0References7

Positive Technologies•added 2026/03/23 12:0 a.m.•1 views

PT-2026-27266

Name of the Vulnerable Software and Affected Versions Contest Gallery plugin for WordPress versions through 28.1.5 Description The Contest Gallery plugin for WordPress is susceptible to an authentication bypass, potentially allowing unauthorized takeover of administrator accounts. This occurs...

8.1CVSS5.8AI score0.00286EPSS

Exploits0References9

Veracode•added 2026/03/21 5:28 a.m.•6 views

Devise Has A Confirmable "change Email" Race Condition Permits User To Confirm Email They Have No Access To

Impact A race condition in Devise's Confirmable module allows an attacker to confirm an email address they do not own. This affects any Devise application using the "reconfirmable" option the default when using Confirmable with email changes. By sending two concurrent email change requests, an...

6CVSS5.9AI score0.00019EPSS

Exploits0Affected Software1

Tenable Nessus•added 2026/03/19 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-32700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to...

6CVSS5.9AI score0.00019EPSS