Lucene search
K

4 matches found

OSV
OSV
added 2026/03/10 5:6 p.m.6 views

CVE-2026-30959 OneUptime has WhatsApp Resend Verification Authorization Bypass

OneUptime is a solution for monitoring and managing online services. The resend-verification-code endpoint allows any authenticated user to trigger a verification code resend for any UserWhatsApp record by ID. Ownership is not validated unlike the verify endpoint. This affects the...

5.3CVSS5.9AI score0.00371EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/10 5:6 p.m.30 views

CVE-2026-30959 OneUptime has WhatsApp Resend Verification Authorization Bypass

OneUptime is a solution for monitoring and managing online services. The resend-verification-code endpoint allows any authenticated user to trigger a verification code resend for any UserWhatsApp record by ID. Ownership is not validated unlike the verify endpoint. This affects the...

5.3CVSS0.00371EPSS
Exploits1References2
OSV
OSV
added 2026/03/10 1:15 a.m.2 views

GHSA-CW6X-MW64-Q6PV OneUptime has WhatsApp Resend Verification Authorization Bypass

Description The resend-verification-code endpoint allows any authenticated user to trigger a verification code resend for any UserWhatsApp record by ID. Ownership is not validated unlike the verify endpoint. Affected Source - Endpoint: UserWhatsAppAPI.ts - Service: UserWhatsAppService.ts - Verify...

5.3CVSS5.9AI score0.00371EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/03/10 1:15 a.m.8 views

OneUptime has WhatsApp Resend Verification Authorization Bypass

Description The resend-verification-code endpoint allows any authenticated user to trigger a verification code resend for any UserWhatsApp record by ID. Ownership is not validated unlike the verify endpoint. Affected Source - Endpoint: UserWhatsAppAPI.ts - Service: UserWhatsAppService.ts - Verify...

5.3CVSS5.9AI score0.00371EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder