CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

RedhatCVE•added 2026/06/05 7:48 p.m.•7 views

CVE-2026-10217

A flaw has been found in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function handleSave of the file internal/http/ttsconfig.go of the component RoleAdmin Gateway. This manipulation causes improper privilege management. Remote exploitation of the attack is possible. The...

6.5CVSS6.1AI score0.00209EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:48 p.m.•6 views

CVE-2026-10616

A weakness has been identified in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function TeamTasksTool.executeComplete of the file internal/tools/teamtaskslifecycle.go of the component Team Task Completion Handler. Executing a manipulation can lead to missing authorization. Th...

5.3CVSS5.1AI score0.00206EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:34 p.m.•6 views

CVE-2026-10617

A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.11.3. This affects the function resolveAuth of the file internal/http/auth.go of the component Webhook Verification Handler. The manipulation leads to missing authentication. Remote exploitation of the attack is possibl...

7.5CVSS6.6AI score0.00399EPSS

Exploits0References1

NVD•added 2026/06/02 8:16 p.m.•8 views

CVE-2026-10617

7.5CVSS0.00399EPSS

Exploits0References6

Cvelist•added 2026/06/02 7:0 p.m.•27 views

CVE-2026-10617 nextlevelbuilder GoClaw Webhook Verification auth.go resolveAuth missing authentication

7.5CVSS0.00399EPSS

Exploits0References6

EUVD•added 2026/06/02 7:0 p.m.•8 views

EUVD-2026-34009

7.5CVSS6.5AI score0.00399EPSS

Exploits0References6

CVE•added 2026/06/02 7:0 p.m.•13 views

CVE-2026-10617

The CVE-2026-10617 entry describes a vulnerability in nextlevelbuilder GoClaw up to version 3.11.3, affecting the resolveAuth function in internal/http/auth.go of the Webhook Verification Handler. The issue results from a manipulation that leads to missing authentication, enabling remote exploita...

7.5CVSS6.5AI score0.00399EPSS

Exploits0References6

Vulnrichment•added 2026/06/02 7:0 p.m.•8 views

CVE-2026-10617 nextlevelbuilder GoClaw Webhook Verification auth.go resolveAuth missing authentication

7.5CVSS6.5AI score0.00399EPSS

Exploits0References6

CVE•added 2026/06/02 6:30 p.m.•13 views

CVE-2026-10616

CVE-2026-10616 affects nextlevelbuilder GoClaw up to 3.11.3. The vulnerability resides in TeamTasksTool.executeComplete (internal/tools/team_tasks_lifecycle.go), where a manipulation can lead to missing authorization. The issue can be exploited remotely and the exploit has been made publicly avai...

5.3CVSS5.5AI score0.00206EPSS

Exploits0References6

Cvelist•added 2026/06/02 6:30 p.m.•26 views

CVE-2026-10616 nextlevelbuilder GoClaw Team Task Completion team_tasks_lifecycle.go TeamTasksTool.executeComplete authorization

5.3CVSS0.00206EPSS

Exploits0References6

NVD•added 2026/06/02 4:17 a.m.•13 views

CVE-2026-10583

A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.11.3. Affected by this issue is the function Import of the file internal/http/ttsconfig.go of the component TTS Configuration Endpoint. The manipulation leads to server-side request forgery. It is possible to initiate t...

5.8CVSS0.00227EPSS

Exploits0References7

ATTACKERKB•added 2026/06/02 2:45 a.m.•5 views

CVE-2026-10583

5.8CVSS5.4AI score0.00227EPSS

Exploits0References7Affected Software1

Cvelist•added 2026/06/02 2:45 a.m.•41 views

CVE-2026-10583 nextlevelbuilder GoClaw TTS Configuration Endpoint tts_config.go import server-side request forgery

5.8CVSS0.00227EPSS

Exploits0References7

CVE•added 2026/06/02 2:45 a.m.•16 views

CVE-2026-10583

A vulnerability in nextlevelbuilder GoClaw up to 3.11.3 affects the Import function in internal/http/tts_config.go (TTS Configuration Endpoint). The issue enables server-side request forgery (SSRF) and can be triggered remotely. Exploit details have been publicly disclosed, and the project charac...

5.8CVSS5.4AI score0.00227EPSS

Exploits0References7

Positive Technologies•added 2026/06/02 12:0 a.m.•13 views

PT-2026-45820

Name of the Vulnerable Software and Affected Versions GoClaw versions prior to 3.11.4 Description A weakness in the Team Task Completion Handler component allows for missing authorization. This issue occurs within the TeamTasksTool.executeComplete function located in the internal/tools/team tasks...

5.3CVSS5.5AI score0.00206EPSS

Exploits0References8

NVD•added 2026/06/01 4:16 a.m.•13 views

CVE-2026-10219

A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridge.WriteFile of the file internal/sandbox/fsbridge.go of the component writefile Tool. Performing a manipulation results in os command injection. The attack is possible to be carried out remotely. T...

7.5CVSS0.01336EPSS

Exploits0References7

NVD•added 2026/06/01 4:16 a.m.•12 views

CVE-2026-10217

6.5CVSS0.00209EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 3:15 a.m.•9 views

CVE-2026-10219 nextlevelbuilder GoClaw write_file Tool fsbridge.go FsBridge.WriteFile os command injection

7.5CVSS6.7AI score0.01336EPSS

Exploits0References7

ATTACKERKB•added 2026/06/01 3:15 a.m.•7 views

CVE-2026-10219

7.5CVSS6.7AI score0.01336EPSS

Exploits0References7Affected Software1

CVE•added 2026/06/01 3:0 a.m.•15 views

CVE-2026-10218

The CVE-2026-10218 entry applies to nextlevelbuilder GoClaw up to version 3.11.3. The issue is in the auth function of internal/http/evolution_handlers.go, leading to improper authorization. The vulnerability is exploitable remotely and was disclosed publicly; the project labeled the issue as a b...

5.5CVSS5.6AI score0.0023EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by