CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

427 matches found

EUVD-2024-54951

Authorization Bypass Through User-Controlled Key vulnerability in Akinsoft MyRezzta allows Forceful Browsing. This issue affects MyRezzta: from s2.02.02 before v2.05.01...

6.8CVSS5.8AI score0.00055EPSS

Exploits0References3

EUVD•added 4 days ago•2 views

EUVD-2024-54939

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Akınsoft QR Menü allows Forceful Browsing, Phishing. This issue affects QR Menü: from s1.05.05 before v1.05.12...

6.3CVSS5.8AI score0.00046EPSS

Exploits0References3

EUVD•added 2026/05/20 12:31 a.m.•8 views

EUVD-2026-30991

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing. This issue affects Node View Permissions: from 0.0.0 before 1.7.0, from 2.0.0 before 2.0.1...

5.8AI score0.00037EPSS

Exploits0References2

EUVD•added 2026/05/20 12:31 a.m.•8 views

EUVD-2026-30992

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

5.8AI score0.00054EPSS

Exploits0References2

NVD•added 2026/05/19 11:16 p.m.•8 views

CVE-2026-8495

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

9.8CVSS0.00054EPSS

Exploits0References1

NVD•added 2026/05/19 11:16 p.m.•7 views

CVE-2026-8491

3.7CVSS0.00037EPSS

Exploits0References1

Vulnrichment•added 2026/05/19 10:29 p.m.•7 views

CVE-2026-8495 Date iCal - Critical - Information disclosure - SA-CONTRIB-2026-037

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

5.8AI score0.00054EPSS

Exploits0References1

ATTACKERKB•added 2026/05/19 10:29 p.m.•5 views

CVE-2026-8495

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

5.8AI score0.00054EPSS

Exploits0References2

CVE•added 2026/05/19 10:29 p.m.•15 views

CVE-2026-8495

The Date iCal Drupal module (Date iCal) is affected by a Missing Authorization vulnerability that allows forceful browsing. Affected versions are 0.0.0 through 4.0.14, with exploitation stemming from insufficient access checks and input sanitization in the iCal feed export functionality, which ex...

9.8CVSS5.8AI score0.00054EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/19 10:29 p.m.•28 views

CVE-2026-8495 Date iCal - Critical - Information disclosure - SA-CONTRIB-2026-037

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

0.00054EPSS

Exploits0References1

ATTACKERKB•added 2026/05/19 10:28 p.m.•5 views

CVE-2026-8491

5.8AI score0.00037EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/19 10:28 p.m.•5 views

CVE-2026-8491 Node View Permissions - Moderately critical - Access bypass - SA-CONTRIB-2026-034

5.8AI score0.00037EPSS

Exploits0References1

CVE•added 2026/05/19 10:28 p.m.•8 views

CVE-2026-8491

CVE-2026-8491 involves an improper check in the Drupal Node View Permissions module that permits forceful browsing. Affected are Node View Permissions 0.0.0–1.6.x and 2.0.0–2.0.0, where cancelled users’ content reassigned to anonymous users could be exposed. Remediation: upgrade to 1.7.0 (for 0.0...

3.7CVSS5.8AI score0.00037EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/03/26 9:42 p.m.•3 views

CVE-2026-4933

A flaw was found in Drupal's Unpublished Node Permissions module. This incorrect authorization vulnerability allows an attacker to bypass intended access controls, potentially enabling them to view unpublished content through forceful browsing...

5.7AI score0.00051EPSS

Exploits0References2

RedhatCVE•added 2026/03/26 9:42 p.m.•1 views

CVE-2026-3525

A flaw was found in Drupal File Access Fix deprecated. An incorrect authorization vulnerability allows an attacker to perform forceful browsing, potentially leading to unauthorized access to sensitive information or resources. This issue arises due to improper checks on file access permissions...

5.8AI score0.00044EPSS

Exploits0References2

RedhatCVE•added 2026/03/26 9:36 p.m.•1 views

CVE-2026-3526

5.7AI score0.00014EPSS

Exploits0References2

EUVD•added 2026/03/26 9:31 p.m.•3 views

EUVD-2026-16395

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful Browsing.This issue affects Unpublished Node Permissions: from 0.0.0 before 1.7.0...

5.8AI score0.00051EPSS

Exploits0References2

EUVD•added 2026/03/26 9:31 p.m.•1 views

EUVD-2026-16375

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.8AI score0.00044EPSS

Exploits0References2

EUVD•added 2026/03/26 9:31 p.m.•2 views

EUVD-2026-16377

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.8AI score0.00014EPSS

Exploits0References2

NVD•added 2026/03/26 9:17 p.m.•3 views

CVE-2026-4933

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful Browsing.This issue affects Unpublished Node Permissions: from 0.0.0 before 1.7.0...

7.5CVSS0.00051EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by