Lucene search
K

87 matches found

NVD
NVD
added 2025/10/27 2:15 a.m.3 views

CVE-2025-62977

Missing Authorization vulnerability in 沃之涛 百度站长SEO合集支持百度/神马/Bing/头条推送 baiduseo allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects 百度站长SEO合集支持百度/神马/Bing/头条推送: from n/a through = 2.1.4...

5.3CVSS0.00263EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/10/27 12:0 a.m.3 views

The vulnerability of the Jenkins automation server allows a hacker to gain unauthorized access to functions that would otherwise be restricted.

The vulnerability of the Jenkins automation server is related to improper access control. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to functions that would otherwise be restricted...

4.3CVSS7AI score0.00448EPSS
Exploits0References3Affected Software2
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.5 views

CVE-2025-49925

Missing Authorization vulnerability in VibeThemes WPLMS wplmsplugin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS: from n/a through = 1.9.9.7...

7.5CVSS7AI score0.00333EPSS
Exploits0References1
OSV
OSV
added 2025/10/22 3:15 p.m.3 views

CVE-2025-49925

Missing Authorization vulnerability in VibeThemes WPLMS wplmsplugin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS: from n/a through = 1.9.9.7...

7.3CVSS5.8AI score0.00333EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-27470

Malware in sbrugna...

9.6CVSS9AI score0.00952EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-20381

Malware in sbrugna...

8.8CVSS6.9AI score0.00614EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-28498

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.0034EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48738

Malicious code in bioql PyPI...

9.1CVSS8.9AI score0.00723EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-58745

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0031EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/30 11:31 a.m.3 views

CVE-2025-6724

In Progress Chef Automate, versions earlier than 4.13.295, on Linux x86 platform, an authenticated attacker can gain access to Chef Automate restricted functionality in multiple services via improperly neutralized inputs used in an SQL command...

8.8CVSS7.4AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 2:9 a.m.17 views

CVE-2025-42915

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

5.4CVSS6.7AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 2:15 a.m.20 views

CVE-2025-42915

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

5.4CVSS0.0017EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/09 2:6 a.m.27 views

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

5.4CVSS0.0017EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/09 2:6 a.m.5 views

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

5.4CVSS6.2AI score0.0017EPSS
Exploits0References2
CVE
CVE
added 2025/09/09 2:6 a.m.18 views

CVE-2025-42915

CVE-2025-42915 affects the SAP Fiori app Manage Payment Blocks . The root cause is missing authorization checks, permitting an attacker with basic user privileges to abuse functions restricted to specific user groups. Impact is limited to confidentiality and integrity (no availability impact stat...

5.4CVSS6.2AI score0.0017EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.4 views

CVE-2025-54710

Missing Authorization vulnerability in bPlugins Tiktok Feed b-tiktok-feed allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Tiktok Feed: from n/a through = 1.0.21...

7.1CVSS5.9AI score0.00218EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 8:3 a.m.25 views

CVE-2025-49406

CVE-2025-49406 concerns the WordPress Houzez theme (

8.5CVSS5.1AI score0.00315EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.5 views

WordPress plugin The E-Commerce ERP 安全漏洞

WordPress The E-Commerce ERP is a comprehensive management system designed for small and medium-sized enterprises, integrating financial management, human resources management, procurement management, sales management, inventory management and production management, helping enterprises to optimiz...

9.8CVSS7.2AI score0.00421EPSS
Exploits0References1
OSV
OSV
added 2025/05/26 1:15 p.m.4 views

CVE-2025-40667

Missing authorization vulnerability in TCMAN's GIM v11. This allows an authenticated attacker to access any functionality of the application even when they are not available through the user interface. To exploit the vulnerability the attacker must modify the HTTP code of the response from ‘302...

6.5CVSS5.8AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:12 a.m.8 views

CVE-2024-56273

Missing Authorization vulnerability in wpvividplugins WPvivid Backup and Migration wpvivid-backuprestore allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPvivid Backup and Migration: from n/a through = 0.9.106...

9.8CVSS7.2AI score0.00392EPSS
Exploits0References1
Rows per page
Query Builder