Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/13 9:31 p.m.5 views

EUVD-2025-34078

Liferay Account Admin Web vulnerable to Authorization Bypass Through User-Controlled Key...

5.3CVSS6.1AI score0.00279EPSS
Exploits0References5
NVD
NVD
added 2025/10/13 8:15 p.m.8 views

CVE-2025-62242

Insecure Direct Object Reference IDOR vulnerability with account addresses in Liferay Portal 7.4.3.4 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote authenticated users to from one account to view addresses fr...

5.3CVSS0.00279EPSS
Exploits0References1
OSV
OSV
added 2025/10/13 8:15 p.m.10 views

CVE-2025-62242

Insecure Direct Object Reference IDOR vulnerability with account addresses in Liferay Portal 7.4.3.4 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote authenticated users to from one account to view addresses fr...

4.3CVSS6.8AI score0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/13 7:10 p.m.2 views

CVE-2025-62242

Insecure Direct Object Reference IDOR vulnerability with account addresses in Liferay Portal 7.4.3.4 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote authenticated users to from one account to view addresses fr...

5.3CVSS6.4AI score0.00279EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 7:10 p.m.24 views

CVE-2025-62242

CVE-2025-62242 describes an IDOR in Liferay, affecting Liferay Portal 7.4.3.4–7.4.3.111 and Liferay DXP 2023.Q3.1–Q4.5, plus 7.4 GA up to update 92. The vulnerability allows remote authenticated users to view addresses from another account by supplying AccountEntriesAdminPortlet_addressId in the ...

5.3CVSS6.4AI score0.00279EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.4 views

PT-2025-41803

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.4.3.4 through 7.4.3.111 Liferay DXP versions 2023.Q4.0 through 2023.Q4.5 Liferay DXP versions 2023.Q3.1 through 2023.Q3.8 Liferay Portal versions 7.4 GA through update 92 Description An Insecure Direct Object Referenc...

5.3CVSS6.4AI score0.00279EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12965

Malware in sbrugna...

7.5CVSS7.7AI score0.01094EPSS
Exploits0References3
NVD
NVD
added 2024/01/16 4:15 p.m.30 views

CVE-2023-6741

The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address...

4.3CVSS4.6AI score0.00394EPSS
Exploits1References1
OSV
OSV
added 2024/01/16 4:15 p.m.6 views

CVE-2023-6741

The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address...

4.3CVSS5.8AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2021/05/24 7:15 p.m.31 views

CVE-2020-20178

Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long, it will result in an exception. Attackers can make attacks by creating a series of account...

7.5CVSS0.01094EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/05/24 7:15 p.m.41 views

CVE-2020-20178

Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long, it will result in an exception. Attackers can make attacks by creating a series of account...

7.5CVSS7.1AI score0.01094EPSS
Exploits0References1
Prion
Prion
added 2021/05/24 7:15 p.m.21 views

Denial of service

Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long, it will result in an exception. Attackers can make attacks by creating a series of account...

5CVSS7.4AI score0.01094EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/05/24 7:1 p.m.31 views

CVE-2020-20178

Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long, it will result in an exception. Attackers can make attacks by creating a series of account...

7.5AI score0.01094EPSS
Exploits0References1
Rows per page
Query Builder