Lucene search
K

204 matches found

CNNVD
CNNVD
added 2026/03/19 12:0 a.m.13 views

OpenEMR 安全漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0.2 contained security...

6.5CVSS5.9AI score0.00312EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.9 views

PT-2026-23006

Craft is a content management system CMS. Prior to 5.9.0-beta.2 and 4.17.0-beta.2, the actionSendActivationEmail endpoint is accessible to unauthenticated users and does not require a permission check for pending users. An attacker with no prior access can trigger activation emails for any pendin...

6.9CVSS6AI score0.00273EPSS
Exploits0References3
OSV
OSV
added 2026/03/03 11:3 p.m.6 views

GHSA-GW85-XP4Q-5GP9 OpenClaw's Synology Chat dmPolicy=allowlist failed open on empty allowedUserIds, allowing unauthorized agent dispatch

Summary In openclaw versions 2026.2.22 and 2026.2.23, the optional synology-chat channel plugin had an authorization fail-open condition: when dmPolicy was allowlist and allowedUserIds was empty/unset, unauthorized senders were still allowed through to agent dispatch. This is assessed as medium...

5.3CVSS6AI score0.00321EPSS
Exploits0References6
Snyk
Snyk
added 2026/03/03 11:3 p.m.5 views

Incorrect Authorization

Overview @openclaw/synology-chat is a Synology Chat channel plugin for OpenClaw Affected versions of this package are vulnerable to Incorrect Authorization in the synology-chat channel plugin when dmPolicy is set to allowlist and allowedUserIds is empty or unset. An attacker can trigger...

9.8CVSS5.8AI score0.00321EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/03 11:3 p.m.32 views

OpenClaw's Synology Chat dmPolicy=allowlist failed open on empty allowedUserIds, allowing unauthorized agent dispatch

Summary In openclaw versions 2026.2.22 and 2026.2.23, the optional synology-chat channel plugin had an authorization fail-open condition: when dmPolicy was allowlist and allowedUserIds was empty/unset, unauthorized senders were still allowed through to agent dispatch. This is assessed as medium...

9.8CVSS6AI score0.00321EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/03/03 9:49 p.m.3 views

GHSA-4CQV-H74H-93J4 OpenClaw has a Discord `allowFrom` slug-collision authorization bypass

OpenClaw supports Discord allowlists using either user IDs or names/tags. Name/tag matching depends on slug normalization, so different user tags can collide to the same slug and unintentionally satisfy a name-based allowlist entry. Affected Packages / Versions - Package: openclaw npm - Affected...

6.5CVSS5.9AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/02 11:22 p.m.5 views

CVE-2026-1566

The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to privilege escalation via password reset in all versions up to, and including, 5.2.7. This is due to the plugin allowing users with a LatePoint Agent role, who are creating new customers to se...

8.8CVSS6AI score0.003EPSS
Exploits0References3
Veracode
Veracode
added 2026/02/21 5:3 a.m.7 views

LDAP Injection

Moonraker is vulnerable to LDAP search filter injection. The vulnerability is due to the lack of proper input validation in the login endpoint, where an attacker can inject malicious LDAP search filters, allowing for brute force methods to discover LDAP entries on the server such as user IDs and...

6.9CVSS5.8AI score0.0027EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/02/03 11:15 a.m.7 views

CVE-2025-67857

A flaw was found in moodle. During anonymous assignment submissions, user identifiers were inadvertently exposed in URLs. This data exposure allows unauthorized viewers to see internal user IDs, compromising the intended anonymity and potentially leading to information disclosure...

5.3CVSS0.00314EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 10:52 a.m.5 views

CVE-2025-67857

A flaw was found in moodle. During anonymous assignment submissions, user identifiers were inadvertently exposed in URLs. This data exposure allows unauthorized viewers to see internal user IDs, compromising the intended anonymity and potentially leading to information disclosure...

4.3CVSS5.3AI score0.00314EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/03 10:52 a.m.7 views

EUVD-2025-206751

A flaw was found in moodle. During anonymous assignment submissions, user identifiers were inadvertently exposed in URLs. This data exposure allows unauthorized viewers to see internal user IDs, compromising the intended anonymity and potentially leading to information disclosure...

4.3CVSS5.3AI score0.00314EPSS
Exploits0References3
NVD
NVD
added 2026/01/10 2:15 a.m.7 views

CVE-2026-22602

OpenProject is an open-source, web-based project management software. Prior to version 16.6.2, a low‑privileged logged-in user can view the full names of other users. Since user IDs are assigned sequentially and predictably e.g., 1 to 1000, an attacker can extract a complete list of all users’ fu...

3.5CVSS0.00255EPSS
Exploits0References4
OSV
OSV
added 2025/12/22 12:30 p.m.5 views

GHSA-QVMC-92VG-6R35 Mattermost with Jira plugin enabled has Incorrect Implementation of Authentication Algorithm

Mattermost versions 11.1.x = 11.1.0, 11.0.x = 11.0.5, 10.12.x = 10.12.3, 10.11.x = 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions =4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows ...

7.2CVSS7AI score0.00227EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2025/12/22 12:30 p.m.6 views

Mattermost with Jira plugin enabled has Incorrect Implementation of Authentication Algorithm

Mattermost versions 11.1.x = 11.1.0, 11.0.x = 11.0.5, 10.12.x = 10.12.3, 10.11.x = 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions =4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows ...

8.3CVSS7.1AI score0.00227EPSS
Exploits0References9Affected Software2
Snyk
Snyk
added 2025/12/22 11:41 a.m.2 views

Incorrect Implementation of Authentication Algorithm

Overview Affected versions of this package are vulnerable to Incorrect Implementation of Authentication Algorithm due to the authentication and issue-key path restrictions are not properly enforced. An attacker can impersonate another user and send authenticated GET and POST requests to the Jira...

8.3CVSS7AI score0.00227EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/20 8:22 a.m.24 views

CVE-2025-12492 Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin <= 2.11.0 - Unauthenticated Sensitive Information Exposure

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajaxgetmembers function. This is due to the use of a...

5.3CVSS0.00437EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/20 12:0 a.m.8 views

PT-2025-52548

Name of the Vulnerable Software and Affected Versions Ultimate Member plugin for WordPress versions prior to 2.11.1 Description The Ultimate Member plugin for WordPress is affected by a sensitive information exposure issue. Insufficient authorization checks on an unauthenticated AJAX endpoint,...

5.3CVSS6.3AI score0.00437EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/12/12 11:15 a.m.29 views

CVE-2025-14159 Secure Copy Content Protection and Content Locking <= 4.9.2 - Cross-Site Request Forgery to Data Export

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.9.2. This is due to missing nonce validation on the 'ayssccpresultsexportfile' AJAX action. This makes it possible for unauthenticated...

4.3CVSS0.00137EPSS
Exploits0References4
Veracode
Veracode
added 2025/12/04 5:45 a.m.5 views

Insecure Direct Object Reference (IDOR)

com.liferay.portal, com.liferay.portal.impl is vulnerable to an Insecure Direct Object Reference IDOR. The vulnerability is due to improper access control on the comliferayusersadminwebportletUsersAdminPortletaddUserIds parameter, which allows an attacker to assign an organization to a user acros...

5.3CVSS6.9AI score0.00248EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/11/13 9:31 a.m.5 views

EUVD-2025-158263

The Comment Edit Core – Simple Comment Editing plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.0 via the 'ajaxgetcomment' function. This makes it possible for unauthenticated attackers to extract sensitive data including user IDs, IP...

5.3CVSS5.4AI score0.00262EPSS
Exploits0References4
Rows per page
Query Builder