Lucene search
K

7 matches found

NVD
NVD
added 2026/06/10 10:17 p.m.8 views

CVE-2026-53634

Sharp is a content management framework built for Laravel as a package. From version 9.0.0 to before version 9.22.3, the create and store endpoints of the Quick Creation Command feature did not enforce any authorization check. An authenticated Sharp user without create permission on a given entit...

4.3CVSS0.00213EPSS
Exploits0References4
Snyk
Snyk
added 2026/06/10 10:15 p.m.5 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization in the create and store functions in ApiEntityListQuickCreationCommandController.php. A user can create or submit new records on the Quick Creation Command endpoint for any entity with Quick Creation Command...

5.4CVSS5.4AI score0.00213EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/10 8:3 p.m.8 views

EUVD-2026-36117

Sharp is a content management framework built for Laravel as a package. From version 9.0.0 to before version 9.22.3, the create and store endpoints of the Quick Creation Command feature did not enforce any authorization check. An authenticated Sharp user without create permission on a given entit...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References4
CVE
CVE
added 2026/06/10 8:3 p.m.18 views

CVE-2026-53634

The CVE concerns Sharp (Laravel package) where the Quick Creation Command endpoints (create and store) from version 9.0.0 up to just before 9.22.3 failed to enforce authorization checks. An authenticated Sharp user lacking create permission on a target entity could access the creation form or sub...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/10 8:3 p.m.9 views

CVE-2026-53634 Sharp: Missing Authorization Check in Quick Creation Command Endpoints

Sharp is a content management framework built for Laravel as a package. From version 9.0.0 to before version 9.22.3, the create and store endpoints of the Quick Creation Command feature did not enforce any authorization check. An authenticated Sharp user without create permission on a given entit...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/10 8:3 p.m.28 views

CVE-2026-53634 Sharp: Missing Authorization Check in Quick Creation Command Endpoints

Sharp is a content management framework built for Laravel as a package. From version 9.0.0 to before version 9.22.3, the create and store endpoints of the Quick Creation Command feature did not enforce any authorization check. An authenticated Sharp user without create permission on a given entit...

4.3CVSS0.00213EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.17 views

PT-2026-48549

Sharp is a content management framework built for Laravel as a package. From version 9.0.0 to before version 9.22.3, the create and store endpoints of the Quick Creation Command feature did not enforce any authorization check. An authenticated Sharp user without create permission on a given entit...

4.3CVSS5.4AI score0.00213EPSS
Exploits0References5
Rows per page
Query Builder