168 matches found
CVE-2020-7583
A vulnerability has been identified in Automation License Manager 5 All versions, Automation License Manager 6 All versions V6.0.8. The application does not properly validate the users' privileges when executing some operations, which could allow a user with low permissions to arbitrary modify...
Mattermost Permission Issues Vulnerability
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...
Mattermost 安全漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to add guest users via the API...
Mattermost 安全漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...
Mattermost Authorization Issues Vulnerability
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an authorization issue vulnerability that stems from improper privilege validation, which can be exploited by an attacker to make unauthorized changes to the system administrato...
Mattermost 安全漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an authorization issue vulnerability that stems from improper privilege validation, which can be exploited by an attacker to make unauthorized changes to the system administrato...
student-manage 安全漏洞
student-manage is a student grade management system by the individual developer Yongkang Huang in China. A security vulnerability exists in student-manage version 1, which stems from an insecure privilege validation that could lead to elevated privileges...
lunary authorization issue vulnerability (CNVD-2025-07603)
lunary is lunary open source a production toolkit for LLM . An authorization issue vulnerability exists in lunary that stems from the checklists.post endpoint not being properly privilege-validated and can be exploited by an attacker to cause unauthorized creation or modification of checklists...
Lunary 授权问题漏洞
lunary is lunary open source a production toolkit for LLM . An authorization issue vulnerability exists in lunary that stems from the checklists.post endpoint not being properly privilege-validated and can be exploited by an attacker to cause unauthorized creation or modification of checklists...
Joomla! 代码问题漏洞
Joomla! is a free, open source content management system from Joomla! open source. A code issue vulnerability exists in Joomla! that stems from insufficient privilege validation and could lead to a user changing a file extension...
GitLab 安全漏洞
GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab, which stems from improper privilege...
CVE-2020-11466
An issue was discovered in Deskpro before 2019.8.0. The /api/tickets endpoint failed to properly validate a user's privilege, allowing an attacker to retrieve arbitrary information about all helpdesk tickets stored in database with numerous filters. This leaked sensitive information to unauthoriz...
Wildfly Server Role Based Access Control (RBAC) provider 安全漏洞
Wildfly is a powerful, modular and lightweight application server from Wildfly. A security vulnerability exists in the Wildfly Server Role Based Access Control RBAC provider, which stems from a lack of privilege validation for the Suspend and Resume operations, which allows an unprivileged user t...
SROS 2 安全漏洞
SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...
SROS 2 安全漏洞
SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...
SROS 2 安全漏洞
SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...
Huawei HarmonyOS and EMUI Privilege Authentication Vulnerability
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI suffer from a privilege...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI suffer from a privilege...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI are vulnerable to an access...
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI are vulnerable to an access...