Lucene search
+L

435 matches found

NVD
NVD
added 2026/04/02 4:16 p.m.5 views

CVE-2026-33746

Convoy is a KVM server management panel for hosting businesses. From version 3.9.0-beta to before version 4.5.1, the JWTService::decode method did not verify the cryptographic signature of JWT tokens. While the method configured a symmetric HMAC-SHA256 signer via lcobucci/jwt, it only validated...

9.8CVSS0.003EPSS
Exploits0References2
Circl
Circl
added 2026/04/01 11:27 p.m.4 views

GHSA-GHFJ-FX47-WG97

creationtimestamp| type| source ---|---|--- 2026-04-01 23:27:43+00:00| seen| Telegram/9bl7FEfQKeFpZFPlYLUaNlRChLBL7dB3Syrn3BTLiX1da84...

4.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/31 10:58 p.m.6 views

CVE-2026-31799

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. From version 2.14.2 to before version 2.17.0 for parameters "before" and "after" and from version 2.1.0-beta to before version 2.17.0 for parameters "sectionid" and "userid", the /api/v2?cmd=gethomestats endpoint passe...

4.9CVSS5.9AI score0.004EPSS
Exploits1References1
Circl
Circl
added 2026/03/31 7:20 p.m.4 views

GHSA-M2H6-4XPQ-QW3M

creationtimestamp| type| source ---|---|--- 2026-03-31 19:20:10+00:00| seen| Telegram/kcbrs7WWw-nIPeTyrZTDg68aatJd3a7QKUME-vVoB020PA...

4.8AI score
Exploits0
Circl
Circl
added 2026/03/26 11:20 p.m.2 views

GHSA-FR76-5637-W3G9

creationtimestamp| type| source ---|---|--- 2026-03-26 23:20:23+00:00| seen| Telegram/jxEelE5YQIva3R3hkn6lv-ITU5UuBT3ODsw8JQI8o6Btes...

4.8AI score
Exploits0
OSV
OSV
added 2026/03/26 6:12 p.m.6 views

GHSA-FJ74-QXJ7-R3VC AVideo has SQL Injection via Partial Prepared Statement — videos_id Concatenated Directly into Query

Summary In objects/like.php, the getLike method constructs a SQL query using a prepared statement placeholder ? for usersid but directly concatenates $this-videosid into the query string without parameterization. An attacker who can control the videosid value via a crafted request can inject...

7.1CVSS6AI score0.00509EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/26 2:56 p.m.5 views

CVE-2019-25486

Varient 1.6.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the userid parameter. Attackers can submit POST requests with crafted SQL payloads in the userid field to bypass authentication and extract...

8.8CVSS6AI score0.00334EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/03/25 11:57 p.m.6 views

CVE-2026-30892

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

7.8CVSS5.2AI score0.00159EPSS
Exploits1
Cvelist
Cvelist
added 2026/03/25 11:57 p.m.25 views

CVE-2026-30892 Crun incorrectly parses `crun exec` option `-u`, leading to privilege escalation

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the crun exec option -u --user is incorrectly parsed. The value 1 is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected...

0.00159EPSS
Exploits1References3
OSV
OSV
added 2026/03/25 5:47 p.m.5 views

GHSA-5M4Q-5CVX-36MW AVideo Vulnerable to OS Command Injection via Unsanitized `users_id` and `liveTransmitionHistory_id` in Restreamer Log File Path

Summary The restreamer endpoint constructs a log file path by embedding user-controlled usersid and liveTransmitionHistoryid values from the JSON request body without any sanitization. This log file path is then concatenated directly into shell commands passed to exec, allowing an authenticated...

8.8CVSS6.4AI score0.00612EPSS
Exploits1References4
Patchstack
Patchstack
added 2026/03/23 6:13 p.m.6 views

WordPress REST API TO MiniProgram plugin <= 5.1.2 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'userid' REST API Parameter vulnerability

Authenticated Subscriber+ Insecure Direct Object Reference via 'userid' REST API Parameter vulnerability discovered by WordFence in WordPress Plugin REST API TO MiniProgram versions = 5.1.2...

5.3CVSS5.8AI score0.00324EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.17 views

PT-2026-27170

Name of the Vulnerable Software and Affected Versions AVideo versions up to and including 26.0 Description AVideo is an open source video platform. The restreamer endpoint constructs a log file path by embedding user-controlled users id and liveTransmitionHistory id values from the JSON request...

8.8CVSS6.1AI score0.00612EPSS
Exploits1References8
Cvelist
Cvelist
added 2026/03/22 1:2 p.m.38 views

CVE-2026-4548 mickasmt next-saas-stripe-starter update-user-role.ts updateUserrole improper authorization

A vulnerability was detected in mickasmt next-saas-stripe-starter 1.0.0. Affected by this vulnerability is the function updateUserrole of the file actions/update-user-role.ts. The manipulation of the argument userId/role results in improper authorization. The attack may be launched remotely...

6.5CVSS0.00195EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/22 12:0 a.m.5 views

PT-2026-27010

A vulnerability was detected in mickasmt next-saas-stripe-starter 1.0.0. Affected by this vulnerability is the function updateUserrole of the file actions/update-user-role.ts. The manipulation of the argument userId/role results in improper authorization. The attack may be launched remotely...

6.5CVSS6.4AI score0.00195EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.12 views

gmsm 数据伪造问题漏洞

GMSM is a commercial cryptography algorithm library implemented in Go language by Sun Yimin as a personal development. Versions of GMSM prior to 0.41.1 contained a data forgery vulnerability. This vulnerability stemmed from an infinite point ciphertext forgery flaw in the SM9 decryption...

7.5CVSS7.3AI score0.00211EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/15 8:2 a.m.4 views

CVE-2026-4171

A security vulnerability has been detected in CodeGenieApp serverless-express up to 4.17.1. Affected by this issue is some unknown functionality of the file examples/lambda-function-url/packages/api/models/TodoList.ts of the component API Endpoint. The manipulation of the argument userId leads to...

6.5CVSS5.3AI score0.00275EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/13 4:10 p.m.28 views

GHSA-5XXP-2VRJ-X855 SM9 Infinity-Point Ciphertext Forgery Vulnerability

Overview The current SM9 decryption implementation contains an infinity-point ciphertext forgery vulnerability. The root cause is that, during decryption, the elliptic-curve point C1 in the ciphertext is only deserialized and checked to be on the curve, but the implementation does not explicitly...

9.2CVSS5.9AI score0.00211EPSS
Exploits0References5
OSV
OSV
added 2026/03/12 12:30 p.m.6 views

GHSA-R8JR-WG88-FQ5C Keycloak vulnerable to authorization bypass via the Admin API

A flaw was found in Keycloak. An authorization bypass vulnerability in the Keycloak Admin API allows any authenticated user, even those without administrative privileges, to enumerate the organization memberships of other users. This information disclosure occurs if the attacker knows the victim'...

3.1CVSS5.8AI score0.00275EPSS
Exploits0References7
CVE
CVE
added 2026/03/11 6:23 p.m.11 views

CVE-2019-25486

CVE-2019-25486 is described as a SQL injection in Varient 1.6.1. An unauthenticated attacker can inject SQL via the user_id parameter in POST requests, bypass authentication, and potentially extract sensitive data. The description does not specify affected products/vendors beyond “Varient 1.6.1,”...

8.8CVSS5.9AI score0.00334EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/11 12:16 a.m.3 views

Authorization Bypass Through User-Controlled Key

Overview @withstudiocms/auth-kit is an Utilities for managing authentication Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the DELETE /studiocmsapi/dashboard/api-tokens endpoint. An attacker can revoke API tokens belonging to other users,...

7.1CVSS5.9AI score0.00452EPSS
Exploits2References2
Rows per page
Query Builder