Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.8 views

PT-2026-31809

Name of the Vulnerable Software and Affected Versions Dockyard versions prior to 1.1.0 Description Dockyard is a Docker container management app. Prior to version 1.1.0, Docker container start and stop operations are performed through GET requests without Cross-Site Request Forgery CSRF protectio...

6.5CVSS5.8AI score0.00107EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.5 views

CVE-2026-30970

Coral Server is open collaboration infrastructure that enables communication, coordination, trust and payments for The Internet of Agents. Prior to 1.1.0, Coral Server allowed the creation of agent sessions through the /api/v1/sessions endpoint without strong authentication. This endpoint perform...

9.1CVSS5.8AI score0.00319EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.5 views

CVE-2026-30969

Coral Server is open collaboration infrastructure that enables communication, coordination, trust and payments for The Internet of Agents. Prior to 1.1.0, Coral Server did not enforce strong authentication between agents and the server within an active session. This could allow an attacker who...

9.1CVSS0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 5:30 p.m.13 views

EUVD-2026-10708

Coral Server is open collaboration infrastructure that enables communication, coordination, trust and payments for The Internet of Agents. Prior to 1.1.0, Coral Server allowed the creation of agent sessions through the /api/v1/sessions endpoint without strong authentication. This endpoint perform...

8.8CVSS5.8AI score0.00319EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/11 8:47 p.m.3 views

CVE-2026-25935 Vikunja Affected by XSS Via Task Preview

Vikunja is a todo-app to organize your life. Prior to 1.1.0, TaskGlanceTooltip.vue temporarily creates a div and sets the innerHtml to the description. Since there is no escaping on either the server or client side, a malicious user can share a project, create a malicious task, and cause an XSS o...

8.6CVSS5.5AI score0.00227EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/10/03 11:53 p.m.6 views

WordPress Integrate Dynamics 365 CRM plugin <= 1.0.9 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Integrate Dynamics 365 CRM versions = 1.0.9...

6.5CVSS6.8AI score0.00252EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/09/09 11:53 p.m.4 views

WordPress MyBrain Utilities plugin <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Gilang in WordPress Plugin MyBrain Utilities versions = 1.0.8...

6.4CVSS5.5AI score0.00216EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder