CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

EUVD-2026-40161

LibrePhotos before 1.0.0 contains a broken object level authorization vulnerability in the SetPhotosShared endpoint that allows authenticated users to grant themselves access to other users' private photos by bypassing ownership validation. Attackers can manipulate sharedto relations without prop...

6CVSS5.9AI score

Exploits0References5

EUVD•added 6 days ago•9 views

EUVD-2026-38738

Capgo before 12.128.2 contains a broken object level authorization BOLA vulnerability in the POST /build/start/:jobId and POST /build/cancel/:jobId endpoints. The handlers authorize the request based only on the attacker-controlled appid supplied in the request body and never verify that the jobI...

7.6CVSS6.1AI score0.00176EPSS

Exploits0References2

NVD•added last week•11 views

CVE-2026-54016

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI has a Broken Object Level Authorization BOLA vulnerability in the builtin searchknowledgefiles tool. When native function calling is enabled and the selected model has no...

4.3CVSS0.00226EPSS

Exploits1References1

RedhatCVE•added 2026/06/05 7:49 p.m.•8 views

CVE-2026-38568

HireFlow v1.2 is vulnerable to Incorrect Access Control. The application does not enforce object-level authorization on the /candidate/ and /interview/ endpoints. The route handlers retrieve records by the user-supplied ID without verifying that the requesting user is the owner or has an authoriz...

8.1CVSS5.5AI score0.00231EPSS

Exploits1References1

RedhatCVE•added 2026/06/05 7:21 p.m.•10 views

CVE-2026-38532

A Broken Object-Level Authorization BOLA in the /Contact/Persons/PersonController.php endpoint of Webkul Krayin CRM v2.2.x allows authenticated attackers to arbitrarily read, modify, and permanently delete any contact owned by other users via supplying a crafted GET request...

8.1CVSS5.5AI score0.00351EPSS

Exploits2References1

RedhatCVE•added 2026/06/05 7:21 p.m.•8 views

CVE-2026-38530

A Broken Object-Level Authorization BOLA in the /Controllers/Lead/LeadController.php endpoint of Webkul Krayin CRM v2.2.x allows authenticated attackers to arbitrarily read, modify, and permanently delete any lead owned by other users via supplying a crafted GET request...

8.1CVSS5.5AI score0.00351EPSS

Exploits2References1

CNNVD•added 2026/05/20 12:0 a.m.•8 views

WordPress plugin NextGEN Gallery 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.8AI score0.00264EPSS

Exploits0References1

Vulnrichment•added 2026/05/11 12:0 a.m.•6 views

CVE-2026-38568

5.8AI score0.00231EPSS

Exploits1References3

CNNVD•added 2026/05/11 12:0 a.m.•7 views

HireFlow 安全漏洞

HireFlow is an online interview management platform developed by StratonWebDesigners as a personal developer project. Version 1.2 of HireFlow contains a security vulnerability. This vulnerability stems from the lack of object-level authorization for the /candidate/ and /interview/ endpoints. As a...

8.1CVSS5.8AI score0.00231EPSS

Exploits1References1

Cvelist•added 2026/05/11 12:0 a.m.•33 views

CVE-2026-38568

0.00231EPSS

Exploits1References3

CVE•added 2026/05/11 12:0 a.m.•13 views

CVE-2026-38568

Vulnerability summary (CVE-2026-38568): HireFlow v1.2 is affected by Incorrect Access Control due to missing object-level authorization on the /candidate/ and /interview/ endpoints. The application retrieves records by user-supplied IDs without verifying owner or authorization, enabling any authe...

8.1CVSS5.8AI score0.00231EPSS

Exploits1References3

Cvelist•added 2026/05/08 3:30 a.m.•37 views

CVE-2026-41498 Kimai: Team API Missing Object-Level Authorization

Kimai is an open-source time tracking application. Prior to version 2.54.0, the Team API endpoints use IsGranted'editteam' instead of IsGranted'edit', 'team', causing Symfony TeamVoter to abstain from voting. This removes entity-level ownership checks on team operations, allowing any user with th...

3.3CVSS0.00247EPSS

Exploits1References2

Vulnrichment•added 2026/05/08 3:30 a.m.•8 views

CVE-2026-41498 Kimai: Team API Missing Object-Level Authorization

3.3CVSS5.7AI score0.00247EPSS

Exploits1References2

CNNVD•added 2026/05/05 12:0 a.m.•11 views

WordPress plugin GenerateBlocks 安全漏洞

6.5CVSS5.9AI score0.00539EPSS

Exploits0References1

RedhatCVE•added 2026/04/25 7:22 a.m.•4 views

CVE-2026-41277

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, a Mass Assignment vulnerability in the DocumentStore creation endpoint allows authenticated users to control the primary key id and internal state fields of DocumentStore entities. Because the...

8.8CVSS5.5AI score0.00333EPSS

Exploits1References1

NVD•added 2026/04/23 8:16 p.m.•8 views

CVE-2026-41277

8.8CVSS0.00333EPSS

Exploits1References1

EUVD•added 2026/04/17 11:7 p.m.•6 views

EUVD-2026-23589

ChurchCRM is an open-source church management system. In versions prior to 7.2.0, the GET /api/person/personId endpoint loads and returns person records without performing object-level authorization checks. Although the legacy PersonView.php page enforces canEditPerson restrictions, the API layer...

7.1CVSS5.7AI score0.00336EPSS

Exploits0References4

Cvelist•added 2026/04/17 11:7 p.m.•33 views

CVE-2026-40480 ChurchCRM has Missing Object-Level Authorization / IDOR in `/api/person/{personId}`

7.1CVSS0.00336EPSS

Exploits0References4