Lucene search
K

14 matches found

Cvelist
Cvelist
added 2026/05/07 2:58 a.m.39 views

CVE-2026-41657 Admidio: Cross-Organization Member Data Exposure via Permission Check Mismatch in contacts_data.php

Admidio is an open-source user management solution. Prior to version 5.0.9, the contactsdata.php endpoint uses a weaker permission check isAdministratorUsers, requiring only roledituser=true than the frontend UI contacts.php which correctly requires the stronger isAdministrator requiring...

4.9CVSS0.00322EPSS
Exploits0References2
OSV
OSV
added 2026/04/29 9:44 p.m.6 views

GHSA-G8P8-94F2-28GR Admidio Exposes Cross-Organization Member Data via Permission Check Mismatch in contacts_data.php

Summary The contactsdata.php endpoint uses a weaker permission check isAdministratorUsers, requiring only roledituser=true than the frontend UI contacts.php which correctly requires the stronger isAdministrator requiring roladministrator=true and the contactsshowall system setting. A user manager...

4.9CVSS5.9AI score0.00322EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/29 9:44 p.m.37 views

Admidio Exposes Cross-Organization Member Data via Permission Check Mismatch in contacts_data.php

Summary The contactsdata.php endpoint uses a weaker permission check isAdministratorUsers, requiring only roledituser=true than the frontend UI contacts.php which correctly requires the stronger isAdministrator requiring roladministrator=true and the contactsshowall system setting. A user manager...

4.9CVSS5.7AI score0.00322EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/09 5:36 p.m.3 views

CVE-2026-40071 pyLoad WebUI JSON permission mismatch lets ADD/DELETE users invoke MODIFY-only actions

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev97, the /json/packageorder, /json/linkorder, and /json/abortlink WebUI JSON endpoints enforce weaker permissions than the core API methods they invoke. This allows authenticated low-privileged users to execut...

5.4CVSS5.9AI score0.00219EPSS
Exploits1References1
CVE
CVE
added 2026/04/09 5:36 p.m.8 views

CVE-2026-40071

CVE-2026-40071 affects the pyLoad download manager (Python). The weakness lies in the WebUI JSON endpoints /json/package_order, /json/link_order, and /json/abort_link, which enforce weaker permissions than the core API methods they invoke. This permits authenticated, low-privileged users to perfo...

5.4CVSS6AI score0.00219EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/04/08 12:18 a.m.2 views

GHSA-RFGH-63MG-8PWM pyload-ng has a WebUI JSON permission mismatch that lets ADD/DELETE users invoke MODIFY-only actions

Summary Several WebUI JSON endpoints enforce weaker permissions than the core API methods they invoke. This allows authenticated low-privileged users to execute MODIFY operations that should be denied by pyLoad's own permission model. Confirmed mismatches: - ADD user can reorder packages/files...

5.4CVSS6AI score0.00219EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/04/08 12:18 a.m.10 views

pyload-ng has a WebUI JSON permission mismatch that lets ADD/DELETE users invoke MODIFY-only actions

Summary Several WebUI JSON endpoints enforce weaker permissions than the core API methods they invoke. This allows authenticated low-privileged users to execute MODIFY operations that should be denied by pyLoad's own permission model. Confirmed mismatches: - ADD user can reorder packages/files...

5.4CVSS6.1AI score0.00219EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2026/01/07 12:16 p.m.7 views

CVE-2025-14802

The LearnPress – WordPress LMS Plugin for WordPress is vulnerable to unauthorized file deletion in versions up to, and including, 4.3.2.2 via the /wp-json/lp/v1/material/fileid REST API endpoint. This is due to a parameter mismatch between the DELETE operation and authorization check, where the...

5.4CVSS0.00295EPSS
Exploits0References5
CVE
CVE
added 2026/01/07 7:17 a.m.21 views

CVE-2025-14802

CVE-2025-14802 affects LearnPress – WordPress LMS Plugin for Create and Sell Online Courses. The vulnerability is an insecure direct object reference via the REST DELETE endpoint /wp-json/lp/v1/material/{file_id}. The permission check uses item_id from the request body, while the endpoint consume...

5.4CVSS5.6AI score0.00295EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.5 views

PT-2026-1581

Name of the Vulnerable Software and Affected Versions LearnPress – WordPress LMS Plugin for WordPress versions up to and including 4.3.2.2 Description The LearnPress – WordPress LMS Plugin for WordPress is susceptible to unauthorized file deletion. This is caused by a discrepancy in parameter...

5.4CVSS6AI score0.00295EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/01/01 12:0 a.m.5 views

Signal K Server 安全漏洞

Signal K Server is a ship centralized server from Signal K open source. A security vulnerability exists in Signal K Server versions prior to 2.19.0 that stems from the access request system trusting the X-Forwarded-For header and inconsistently displaying the description field with the permission...

8.8CVSS6.2AI score0.00272EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/27 2:46 p.m.12 views

CVE-2025-36228

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user interface and backend API allowed users to access features that appeared disabled, potentially leading to misuse...

3.8CVSS6.7AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2025/12/26 3:15 p.m.5 views

CVE-2025-36228

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user interface and backend API allowed users to access features that appeared disabled, potentially leading to misuse...

3.8CVSS5.8AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2022/05/12 8:15 p.m.1 views

CVE-2022-23139

ZTE's ZXMP M721 product has a permission and access control vulnerability. Since the folder permission viewed by sftp is 666, which is inconsistent with the actual permission. It’s easy for?users to?ignore the modification?of?the file permission configuration, so that low-authority accounts could...

8.8CVSS5.8AI score0.00711EPSS
Exploits0References1
Rows per page
Query Builder