Lucene search
+L

6 matches found

CVE
CVE
added 2026/07/03 8:19 p.m.63 views

CVE-2026-22555

CVE-2026-22555 affects Gitea before 1.26.0. The vulnerability arises because the API endpoint POST /api/v1/repos/{owner}/{repo}/forks does not enforce CanCreateOrgRepo for organization forks, only IsOrgMember, enabling a user in a read-only team to create an org-repo fork. The fork creator gains ...

8.1CVSS5.9AI score0.00304EPSS
Exploits0References4
CVE
CVE
added 2026/05/21 9:7 p.m.18 views

CVE-2026-7879

Concrete CMS 9.5.0 and earlier is affected by a vulnerability in submit_password() within concrete/controllers/single_page/download_file.php that permits unauthorized access to files. The issue arises because downloading permission-restricted files bypasses the view_file permission check; files w...

6.3CVSS5.8AI score0.00224EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.11 views

CVE-2019-2175

In checkAccess of SliceManagerService.java in Android 9, there is a possible permissions check bypass due to incorrect order of arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8CVSS7.2AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-1840

Malware in sbrugna...

5.5CVSS5.6AI score0.00141EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/09/05 9:34 p.m.21 views

CVE-2019-2175

In checkAccess of SliceManagerService.java in Android 9, there is a possible permissions check bypass due to incorrect order of arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8AI score0.00174EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2010/09/15 6:0 p.m.25 views

CVE-2010-1326

perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and...

9.3CVSS6.2AI score0.0515EPSS
Exploits0References1
Rows per page
Query Builder