Lucene search
K

162560 matches found

BDU FSTEC
BDU FSTEC
added 3 hours ago14 views

The vulnerability of the Directum RX ECM system, related to deficiencies in access control, allows a perpetrator to compromise data integrity.

The vulnerability of the Directum RX ECM system is related to deficiencies in access control. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

5CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 3 hours ago12 views

The vulnerability of the MmMapIoSpace() function in the ThrottleBlood.sys driver allows a hacker to escalate their privileges, execute arbitrary code, or cause a service failure.

The vulnerability of the MmMapIoSpace function in the ThrottleBlood.sys driver, as part of the ThrottleStop utility, is related to open IOCTLs with insufficient access control. Exploiting this vulnerability could allow an attacker to enhance their privileges, execute arbitrary code, or cause...

7.5CVSS6AI score0.06702EPSS
Exploits8References3Affected Software1
NVD
NVD
added 4 hours ago3 views

CVE-2026-61985

Missing Authorization vulnerability in magepeopleteam Car Rental Manager car-rental-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Car Rental Manager: from n/a through = 1.3.7...

5.3CVSS
Exploits0References1
NVD
NVD
added 4 hours ago3 views

CVE-2026-59523

Missing Authorization vulnerability in NSquared Simply Schedule Appointments simply-schedule-appointments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simply Schedule Appointments: from n/a through = 1.6.11.11...

6.5CVSS
Exploits0References1
NVD
NVD
added 4 hours ago4 views

CVE-2026-57781

Missing Authorization vulnerability in Sovlix MeetingHub meetinghub allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MeetingHub: from n/a through = 1.25.10...

5.3CVSS
Exploits0References1
NVD
NVD
added 4 hours ago2 views

CVE-2026-57779

Missing Authorization vulnerability in themebeez Fascinate fascinate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fascinate: from n/a through = 1.1.5...

5.3CVSS
Exploits0References1
NVD
NVD
added 5 hours ago2 views

CVE-2026-57694

Authorization Bypass Through User-Controlled Key vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.13...

6.5CVSS
Exploits0References1
NVD
NVD
added 5 hours ago2 views

CVE-2026-57424

Missing Authorization vulnerability in knitpay Razorpay Payment Links for WooCommerce rzp-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Razorpay Payment Links for WooCommerce: from n/a through = 2.1.4...

6.5CVSS
Exploits0References1
NVD
NVD
added 5 hours ago2 views

CVE-2026-57412

Missing Authorization vulnerability in Codemenschen Gift Vouchers gift-voucher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gift Vouchers: from n/a through = 4.6.9...

6.5CVSS
Exploits0References1
EUVD
EUVD
added 5 hours ago5 views

EUVD-2026-43292

The WP Job Portal WordPress plugin before 2.5.5 does not verify ownership when returning an employer's contact email for a given job, allowing authenticated users with a subscriber-level self-registerable account to read other employers' private account email addresses by enumerating job...

6.1AI score
Exploits0References2
Cvelist
Cvelist
added 6 hours ago4 views

CVE-2026-59523 WordPress Simply Schedule Appointments plugin <= 1.6.11.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in NSquared Simply Schedule Appointments simply-schedule-appointments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simply Schedule Appointments: from n/a through = 1.6.11.11...

6.5CVSS
Exploits0References1
Cvelist
Cvelist
added 6 hours ago4 views

CVE-2026-61985 WordPress Car Rental Manager plugin <= 1.3.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in magepeopleteam Car Rental Manager car-rental-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Car Rental Manager: from n/a through = 1.3.7...

5.3CVSS
Exploits0References1
CVE
CVE
added 6 hours ago5 views

CVE-2026-61985

CVE-2026-61985 affects the WordPress Car Rental Manager plugin (

5.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added 6 hours ago6 views

CVE-2026-59523

CVE-2026-59523 affects the WordPress plugin Simply Schedule Appointments (

6.5CVSS6.1AI score
Exploits0References1
CVE
CVE
added 6 hours ago8 views

CVE-2026-57778

CVE-2026-57778 affects the WordPress plugin Booking calendar, Appointment Booking System, specifically versions up to and including 3.2.36. The issue is described as Missing Authorization / Broken Access Control, arising from incorrectly configured access control security levels in the booking-ca...

5.3CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added 6 hours ago3 views

CVE-2026-57781 WordPress MeetingHub plugin <= 1.25.10 - Broken Access Control vulnerability

Missing Authorization vulnerability in Sovlix MeetingHub meetinghub allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MeetingHub: from n/a through = 1.25.10...

5.3CVSS
Exploits0References1
Cvelist
Cvelist
added 6 hours ago2 views

CVE-2026-57779 WordPress Fascinate theme <= 1.1.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in themebeez Fascinate fascinate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fascinate: from n/a through = 1.1.5...

5.3CVSS
Exploits0References1
CVE
CVE
added 6 hours ago12 views

CVE-2026-57797

CVE-2026-57797 describes a Missing Authorization (Broken Access Control) vulnerability in the WordPress EduMall theme (ThemeMove EduMall) up to version 4.5.1. The NVD/CVE records and Patchstack entry indicate that access control levels were incorrectly configured, allowing unauthorized access to ...

4.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added 6 hours ago9 views

CVE-2026-57776

CVE-2026-57776 affects the WordPress VW Wedding theme (vw-wedding) up to version 1.3.7. The issue is described as a Missing Authorization / Broken Access Control vulnerability resulting from incorrectly configured access control levels, allowing exploitation under the described scenario (per CVE ...

5.3CVSS6.1AI score
Exploits0References1
CVE
CVE
added 6 hours ago4 views

CVE-2026-61968

CVE-2026-61968 affects the WordPress myCred plugin up to version 3.1.2. The root cause is a Missing Authorization/Broken Access Control due to incorrectly configured access control security levels, allowing unintended access. The CVE indicates a MEDIUM-severity issue (CVSS 3.1: 5.4) with network ...

5.4CVSS6.1AI score
Exploits0References1
Rows per page
Query Builder