CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3125 matches found

Tenable Nessus•added 2020/02/03 12:0 a.m.•50 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (c5bd9068-440f-11ea-9cdb-001b217b3468)

Gitlab reports : Path Traversal to Arbitrary File Read User Permissions Not Validated in ProjectExportWorker XSS Vulnerability in File API Package and File Disclosure through GitLab Workhorse XSS Vulnerability in Create Groups Issue and Merge Request Activity Counts Exposed Email Confirmation...

9.8CVSS5.9AI score0.02462EPSS

Exploits1References19

Hacker One•added 2020/01/24 5:6 p.m.•26 views

New Relic: Account owner/admin can't actually delete personal users' API keys

Hey team, An account owner/admin should be able to remove API keys belonging to other users in a case of, for instance, they are compromised. This sentence is confirmed by your own docs: F695035 However, the account owner/admin can't actually do this so he can't protect the account data from bein...

0.7AI score

Exploits0

Hacker One•added 2020/01/22 11:1 p.m.•14 views

HackerOne: Unauthenticated users can obtain information about Checklist objects with unclaimed ChecklistCheck objects

The Checklist objects that can be queried through GraphQL are supposed to only be accessible by program members, the users who claimed or responded to a check belonging to a checklist, and HackerOne Pentesters. The Checklist object is also supposed to be in the running state e.g. when the platfor...

1.1AI score

Exploits0

Hacker One•added 2020/01/22 9:48 p.m.•20 views

HackerOne: HackerOne Pentesters can access any structured scope object through GraphQL node interface

A missing authorization check in the StructuredScope protector class app/protectors/protectedstructuredscope.rb:42 enables any HackerOne Pentester to access structured scope objects of programs they aren't invited to or aren't running a penetration test through HackerOne. ruby class...

2.4AI score

Exploits0

Hacker One•added 2020/01/16 2:34 p.m.•41 views

New Relic: Restricted user can update Apdex target for applications by leveraging the GraphQL mutation

Hey team, I've found that Restricted user can update Apdex target for applications by leveraging the GraphQL mutation which doesn't properly implement authorization. Steps to reproduce 1 Sign in NR with Restricted user 2 Navigate to https://api.newrelic.com/graphiql, intercept the request to...

Exploits0

Hacker One•added 2020/01/08 12:10 p.m.•55 views

HackerOne: Unauthorized user can obtain `report_sources` attribute through Team GraphQL object

Summary: Hi team. And Happy New Year! Description: If I am not mistaken, then through this parameter we can define private programs with an external link. If this parameter is not empty, then the program is private. - "HackerOne Platform" Steps To Reproduce https://hackerone.com/graphql POST:...

0.9AI score

Exploits0

Tenable Nessus•added 2020/01/06 12:0 a.m.•48 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (01bde18a-2e09-11ea-a935-001b217b3468)

SO-AND-SO reports : Group Maintainers Can Update/Delete Group Runners Using API GraphQL Queries Can Hang the Application Unauthorized Users Have Access to Milestones of Releases Private Group Name Revealed Through Protected Tags API Users Can Publish Reviews on Locked Merge Requests DoS in the...

5.3CVSS4.9AI score0.01107EPSS

Exploits0References10

FreeBSD•added 2020/01/02 12:0 a.m.•33 views

Gitlab -- Multiple Vulnerabilities

The GitLab Team reports: Group Maintainers Can Update/Delete Group Runners Using API GraphQL Queries Can Hang the Application Unauthorized Users Have Access to Milestones of Releases Private Group Name Revealed Through Protected Tags API Users Can Publish Reviews on Locked Merge Requests DoS in t...

5.3CVSS4.9AI score0.01107EPSS

Exploits0References1

Hacker One•added 2019/12/30 5:42 p.m.•20 views

New Relic: Restricted user can remove NerdStorage documents/collections scoped to ACCOUNT or ENTITY

Hey team, I've found that the Restricted user can remove both documents and whole collections of NerdStorage documents which are scoped to ACCOUNT and ENTITY. I don't know if this is a vulnerability or not, but I think it would be better for you to discuss this internally. According to docs, if a...

0.5AI score

Exploits0

Hacker One•added 2019/12/28 6:38 p.m.•25 views

New Relic: Cross-account reading of Insights dashboards through GraphQL

@skavans identified a GraphQL query lacking validation. This had the potential to return a subset of Insights dashboards in target accounts...

2.8AI score

Exploits0

Hacker One•added 2019/12/25 2:24 p.m.•24 views

HackerOne: profile-picture name parameter with large value lead to DoS for other users and programs on the platform

Summary: The issue persists as there are no text limitations for profile-picture name while uploading the profile-picture, these heavy text names can cause denial of service on different pages of hackerone. Description: I was checking the profile picture upload feature of hackerone and found out...

7.2AI score

Exploits0

Node.js•added 2019/12/23 2:7 p.m.•16 views

Information Exposure

Overview Versions of type-graphql prior to 0.17.6 are vulnerable to Information Exposure. The package leaks the resolver source code in an error message. It is possible to force this error when no subscription topics are provided in the request. Recommendation Upgrade to version 0.17.6 or later...

6.9AI score

Exploits0Affected Software1

Hacker One•added 2019/12/20 11:29 a.m.•19 views

GitLab: Guest users can change the confidentiality attribute on those issues that have been assigned to them

Summary A user with no association to a project nor group can use a mutation GraphQL query to change the confidentiality on those issues where they have been previously assigned. This functionality is restricted to those users which have been granted access to a project and hold at least the...

1.1AI score

Exploits0