CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

CVE-2026-12673

Summary: Liquidfiles before 4.2.12 has a broken access control vulnerability that allows privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in the managed secondary (non-default) group. Affected product/version: Liquidfiles

5.9CVSS5.8AI score

Exploits0References2

EUVD•added 6 hours ago•6 views

EUVD-2026-38111

Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability resulting in privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary non-default group...

5.9CVSS5.8AI score

Exploits0References2

Nuclei•added 15 hours ago•10 views

LiquidFiles < 4.2 - User Enumeration via Password Reset

LiquidFiles filetransfer server before 4.2 contains a user enumeration vulnerability caused by distinguishable responses in password reset functionality, letting unauthenticated attackers enumerate valid user accounts, exploit requires no authentication. id: CVE-2025-56132 info: name: LiquidFiles...

7.3CVSS5.8AI score0.00664EPSS

Exploits1References2

VulnCheck KEV•added 2026/04/30 12:0 a.m.•6 views

VulnCheck KEV: CVE-2025-56132

LiquidFiles filetransfer server is vulnerable to a user enumeration issue in its password reset functionality. The application returns distinguishable responses for valid and invalid email addresses, allowing unauthenticated attackers to determine the existence of user accounts. Version 4.2...

7.3CVSS5.3AI score0.00664EPSS

In wildExploits1References2

RedhatCVE•added 2026/01/09 9:25 a.m.•3 views

CVE-2023-4393

HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization...

6.1CVSS6.8AI score0.00309EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-21453

Malware in sbrugna...

9CVSS9.1AI score0.01639EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-21454

Malware in sbrugna...

6.1CVSS6.3AI score0.007EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-17077

Malware in sbrugna...

5.4CVSS5.6AI score0.0136EPSS

Exploits3References7

GithubExploit•added 2025/10/05 1:15 p.m.•219 views

Exploit for CVE-2025-56132

CVE-2025-56132 - LiquidFiles User Enumeration POC Vulnerab...

7.3CVSS6.4AI score0.00664EPSS

Exploits1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-54257

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00309EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•17 views

EUVD-2025-23554

Malicious code in bioql PyPI...

9.9CVSS6.6AI score0.00498EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-31771

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00664EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-23563

Malicious code in bioql PyPI...

3.8CVSS6.6AI score0.00506EPSS

Exploits1References2

RedhatCVE•added 2025/10/01 12:42 a.m.•6 views

CVE-2025-56132

7.3CVSS7AI score0.00664EPSS

Exploits1References1

OSV•added 2025/09/30 7:15 p.m.•1 views

CVE-2025-56132

7.3CVSS5.8AI score0.00664EPSS

Exploits1References2

NVD•added 2025/09/30 7:15 p.m.•3 views

CVE-2025-56132

7.3CVSS0.00664EPSS

Exploits1References2

CNNVD•added 2025/09/30 12:0 a.m.•3 views

Liquidfiles 安全漏洞

Liquidfiles is a storage service for large, secure file transfers and sharing for companies and organizations from US-based Liquidfiles, Inc. A security vulnerability exists in Liquidfiles versions prior to 4.2, which stems from the password reset feature returning distinguishable responses that...

7.3CVSS6.5AI score0.00664EPSS

Exploits1References2

Vulnrichment•added 2025/09/30 12:0 a.m.•2 views

CVE-2025-56132

6.6AI score0.00664EPSS

Exploits1References2

Cvelist•added 2025/09/30 12:0 a.m.•6 views

CVE-2025-56132

0.00664EPSS

Exploits1References2

CVE•added 2025/09/30 12:0 a.m.•18 views

CVE-2025-56132

LiquidFiles pre-4.2 is affected by a user-enumeration vulnerability in the password reset flow. Distinguishable responses to valid vs. invalid emails allow unauthenticated attackers to enumerate registered users. Upgrading to 4.2+ remedies this with user-based lockout and less informative errors;...

7.3CVSS6.6AI score0.00664EPSS

In wildExploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by