CVE-2026-24950 WordPress Authorsy plugin <= 1.0.6 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in themeplugs Authorsy authorsy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Authorsy: from n/a through = 1.0.6...

ROS-20250729-04

A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with access control errors. JDK and Oracle GraalVM Enterprise Edition virtual machines is related to access control errors...

ROS-20250619-15

A software vulnerability in the Grafana monitoring and surveillance platform is related to a vulnerability in the of the XY Chart plugin to DOM XSS. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code Grafana monitoring and surveillance platform...

ROS-20250514-01

A vulnerability in the iiosimpledummytriggerh function of driver drivers/iio/dummy/iiosimpledummybuffer.c of the Linux kernel's IIO stub driver support is related to the use of an uninitialized resource. an uninitialized resource. Exploitation of the vulnerability could allow an attacker to gain...

PT-2024-10289 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Edge, which is based on Chromium. This vulnerability can be exploited by a remote attacker...

TestLink 安全漏洞

TestLink is a suite of open source software from the TestLink team for managing the software testing process and providing statistical analysis. A security vulnerability exists in TestLink version 1.9.20 that stems from the application not checking user permissions, resulting in an access control...

PT-2023-4690 · Unknown · Sicam Toolbox Ii

Name of the Vulnerable Software and Affected Versions: SICAM TOOLBOX II versions prior to V07.10 Description: A vulnerability has been identified in the SICAM TOOLBOX II application, where the database service is executed as NT AUTHORITYSYSTEM. This could allow a local attacker to execute operati...

PT-2023-3140 · Huawei · Huawei Ar Routers

Name of the Vulnerable Software and Affected Versions: Huawei routers affected versions not specified Description: The issue is related to a traffic hijacking vulnerability. It can be exploited to hijack packets by attackers. The vulnerability is associated with errors in access control when...

PT-2023-1421 · Microsoft · Azure App Service

Name of the Vulnerable Software and Affected Versions: Azure App Service on Azure Stack Hub affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Azure App Service on Azure Stack Hub. It is associated with access control errors. Exploitati...

PT-2022-5943 · Hikvision · Hikvision Ds-3Wf01C-2N/O +1

Name of the Vulnerable Software and Affected Versions: Hikvision DS-3WF0AC-2NT versions affected versions not specified Hikvision DS-3WF01C-2N/O versions affected versions not specified Description: The issue is related to access control errors in the web server of certain Hikvision wireless brid...

PT-2022-4422 · Microsoft · Azure Rtos Guix Studio

Name of the Vulnerable Software and Affected Versions: Azure RTOS GUIX Studio affected versions not specified Description: The issue is related to access control errors in the Azure RTOS GUIX Studio development environment, which can lead to information disclosure. An attacker could exploit this ...

PT-2022-4558 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Microsoft Windows operating system, specifically concerning errors in access control. This vulnerability can...

PT-2022-3558 · Hotdog · Hotdog

Name of the Vulnerable Software and Affected Versions: Hotdog versions prior to 1.0.1 Description: The issue is related to errors in access control, allowing a container to gain full privileges on the host and bypass restrictions set on the container. This could enable an attacker to elevate thei...

OpenIAM Access Control Error Vulnerability

OpenIAM is a fully integrated identity and access management platform. Vulnerabilities exist in OpenIAM versions prior to 4.2.0.3 due to access control errors in the "Create User", "Modify User Privileges" and "Password Reset" operations. No details of the vulnerabilities are available at this ti...

PT-2020-4160 · Microsoft · Windows Cryptographic Services +1

Name of the Vulnerable Software and Affected Versions: Windows Cryptographic Services affected versions not specified Description: The issue is related to errors in access control within the Windows Cryptographic Services, allowing an attacker to elevate their privileges. To exploit this, an...

PT-2020-4079 · Microsoft · Windows Runtime +1

Name of the Vulnerable Software and Affected Versions: Windows Runtime affected versions not specified Description: The issue is related to errors in access control within the Windows Runtime component of the Windows operating system. It allows an attacker to execute arbitrary code with elevated...

PT-2018-2285 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Exchange Server, which can be exploited by a remote attacker to gain elevated privileges. This...