27 matches found
CVE-2026-28723
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 Linux, Windows before build 41186...
CVE-2026-28723
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 Linux, Windows before build 41186...
CVE-2026-28723
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 Linux, Windows before build 41186...
CVE-2026-28723
Unauthorized report deletion due to insufficient access control. The following products are affected: Acronis Cyber Protect 17 Linux, Windows before build 41186...
CVE-2025-36746 SolarEdge Monitoring Platform contains a XSS upon report deletion
SolarEdge monitoring platform contains a Cross‑Site Scripting XSS flaw that allows an authenticated user to inject payloads into report names, which may execute in a victim’s browser during a deletion attempt...
EUVD-2015-5229
Malware in sbrugna...
EUVD-2014-0196
Malware in sbrugna...
EUVD-2012-1154
Malware in sbrugna...
EUVD-2024-39578
Malicious code in bioql PyPI...
EUVD-2023-31709
Malicious code in bioql PyPI...
CVE-2023-27983
A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data...
CVE-2025-27401
Tuleap is an Open Source Suite to improve management of software developments and collaboration. In a standard usages of Tuleap, the issue has a limited impact, it will mostly leave dangling data. However, a malicious user could create and delete reports multiple times to cycle through all the...
CVE-2025-27401 In Tuleap, deleting a report can delete criteria filters in other reports
Tuleap is an Open Source Suite to improve management of software developments and collaboration. In a standard usages of Tuleap, the issue has a limited impact, it will mostly leave dangling data. However, a malicious user could create and delete reports multiple times to cycle through all the...
CVE-2025-27401
CVE-2025-27401 affects Tuleap (Open Source Suite). A malicious user with access to one tracker can delete a report, which may also delete criteria filters for other reports, causing loss of standard filters and forcing admins/users to recreate them. Concrete details: affected software is Tuleap C...
Insufficient Access Control
Moodle is vulnerable to Insufficient Access Control. The vulnerability is due to inadequate permission enforcement, allowing users to delete audiences from reports they are not authorized to modify...
GHSA-FJQ9-452G-JG3Q moodle: Some users can delete audiences of other reports
A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from...
moodle: Some users can delete audiences of other reports
A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from...
CVE-2023-27983
A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data...
CVE-2023-27983
A CWE-306: Missing Authentication for Critical Function vulnerability exists in the Data Server TCP interface that could allow deletion of reports from the IGSS project report directory, this would lead to loss of data when an attacker abuses this functionality. Affected Products: IGSS Data...
nurseryresources.org XSS vulnerability
Open Bug Bounty ID: OBB-705148 Description| Value ---|--- Affected Website:| nurseryresources.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...