Lucene search
K

57341 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/08 9:32 a.m.4 views

CVE-2026-2146

A security flaw has been discovered in guchengwuyue yshopmall up to 1.9.1. This affects the function updateAvatar of the file /api/users/updateAvatar of the component co.yixiang.utils.FileUtil. Performing a manipulation of the argument File results in unrestricted upload. The attack is possible t...

6.5CVSS6.2AI score0.00298EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/08 1:21 a.m.6 views

CVE-2026-25593

OpenClaw is a personal AI assistant. Prior to 2026.1.20, an unauthenticated local client could use the Gateway WebSocket API to write config via config.apply and set unsafe cliPath values that were later used for command discovery, enabling command injection as the gateway user. This vulnerabilit...

8.4CVSS5.4AI score0.00639EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/08 12:30 a.m.5 views

EUVD-2026-5707

WeKan versions prior to 8.19 contain an authorization vulnerability where certain card update API paths validate only board read access rather than requiring write permission. This can allow users with read-only roles to perform card updates that should require write access...

7.1CVSS5.3AI score0.00277EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/08 12:30 a.m.5 views

EUVD-2026-5705

WeKan versions prior to 8.19 contain an insecure direct object reference IDOR in the card comment creation API. The endpoint accepts an authorId from the request body, allowing an authenticated user to spoof the recorded comment author by supplying another user's identifier...

5.3CVSS5.4AI score0.00246EPSS
Exploits0References4
NVD
NVD
added 2026/02/07 10:16 p.m.13 views

CVE-2026-25565

WeKan versions prior to 8.19 contain an authorization vulnerability where certain card update API paths validate only board read access rather than requiring write permission. This can allow users with read-only roles to perform card updates that should require write access...

7.1CVSS0.00277EPSS
Exploits0References3
CVE
CVE
added 2026/02/07 9:45 p.m.14 views

CVE-2026-25858

The CVE-2026-25858 issue affects macrozheng mall up to version 1.0.3 where the mall-portal password reset flow exposes the OTP in the API response and authenticates requests solely by the OTP tied to a telephone number. An unauthenticated attacker can reset arbitrary user passwords using only a k...

9.8CVSS5.7AI score0.00615EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/07 9:45 p.m.3 views

CVE-2026-25858

macrozheng mall version 1.0.3 and prior contains an authentication vulnerability in the mall-portal password reset workflow that allows an unauthenticated attacker to reset arbitrary user account passwords using only a victim’s telephone number. The password reset flow exposes the one-time passwo...

9.3CVSS5.7AI score0.00615EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/07 7:32 p.m.3 views

CVE-2026-2109

A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file /api/undo/ of the component Delete Category Handler. Such manipulation of the argument ID leads to improper authorization. The attack may be launched remotely. The exploit is publicl...

5.5CVSS5.5AI score0.00386EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/02/07 7:2 p.m.16 views

CVE-2026-2108

The CVE-2026-2108 entry covers jsbroks COCO Annotator up to version 0.11.1. The vulnerability affects the Endpoint component’s /api/info/long_task, where manipulation can cause a denial of service. It is remotely exploitable and has been publicly disclosed; multiple sources note no vendor respons...

7.5CVSS5.4AI score0.00693EPSS
Exploits1References4Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/07 12:23 a.m.16 views

SUSE CVE-2026-25538

Devtron is an open source tool integration platform for Kubernetes. In version 2.0.0 and prior, a vulnerability exists in Devtron's Attributes API interface, allowing any authenticated user including low-privileged CI/CD Developers to obtain the global API Token signing key by accessing the...

8.8CVSS5.5AI score0.00393EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.7 views

PT-2026-6917

Name of the Vulnerable Software and Affected Versions jsbroks COCO Annotator versions up to 0.11.1 Description A flaw exists in jsbroks COCO Annotator that allows for improper authorization. This issue is related to the manipulation of the ID argument within an unknown function of the /api/undo/...

5.5CVSS5.2AI score0.00386EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.8 views

PT-2026-6928

Name of the Vulnerable Software and Affected Versions WeKan versions prior to 8.19 Description WeKan contains an authorization issue in certain card update API paths. These paths only validate read access to a board instead of requiring write permission. This allows users with read-only roles to...

7.1CVSS5.4AI score0.00277EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/02/06 10:34 p.m.12 views

Keylime Missing Authentication for Critical Function and Improper Authentication

Impact The Keylime registrar does not enforce mutual TLS mTLS client certificate authentication since version 7.12.0. The registrar's TLS context is configured with ssl.CERTOPTIONAL instead of ssl.CERTREQUIRED, allowing any client to connect to protected API endpoints without presenting a valid...

9.8CVSS5.5AI score0.0575EPSS
Exploits0References9Affected Software1
GithubExploit
GithubExploit
added 2026/02/06 9:30 p.m.194 views

Exploit for Expression Language Injection in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

ButtF - Backend Misconfiguration & Logic Flaw Exploitation Too...

10CVSS5.7AI score0.99999EPSS
Exploits438
NVD
NVD
added 2026/02/06 9:16 p.m.12 views

CVE-2026-25729

DeepAudit is a multi-agent system for code vulnerability discovery. In 3.0.4 and earlier, there is an improper access control vulnerability in the /api/v1/users/ endpoint allows any authenticated user to enumerate all users in the system and retrieve sensitive information including email addresse...

6.5CVSS0.00209EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/06 8:30 p.m.9 views

CVE-2026-25729

DeepAudit is a multi-agent system for code vulnerability discovery. In 3.0.4 and earlier, there is an improper access control vulnerability in the /api/v1/users/ endpoint allows any authenticated user to enumerate all users in the system and retrieve sensitive information including email addresse...

5.3CVSS5.5AI score0.00209EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/06 8:30 p.m.5 views

CVE-2026-25729 DeepAudit Affected by User Enumeration via Broken Access Control

DeepAudit is a multi-agent system for code vulnerability discovery. In 3.0.4 and earlier, there is an improper access control vulnerability in the /api/v1/users/ endpoint allows any authenticated user to enumerate all users in the system and retrieve sensitive information including email addresse...

5.3CVSS5.5AI score0.00209EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/06 8:24 p.m.5 views

CVE-2026-25632 EPyT-Flow has unsafe JSON deserialization (__type__)

EPyT-Flow is a Python package designed for the easy generation of hydraulic and water quality scenario data of water distribution networks. Prior to 0.16.1, EPyT-Flow’s REST API parses attacker-controlled JSON request bodies using a custom deserializer myloadfromjson that supports a type field...

10CVSS5.7AI score0.00657EPSS
Exploits0References3
OSV
OSV
added 2026/02/06 7:47 p.m.6 views

GHSA-RJV5-9PX2-FQW6 Gogs has authorization bypass in repository deletion API

Summary The DELETE /api/v1/repos/:owner/:repo endpoint lacks necessary permission validation middleware. Consequently, any user with read access including read-only collaborators can delete the entire repository. This vulnerability stems from the API route configuration only utilizing the...

7.2CVSS5.9AI score0.00103EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/02/06 7:47 p.m.8 views

Gogs has authorization bypass in repository deletion API

Summary The DELETE /api/v1/repos/:owner/:repo endpoint lacks necessary permission validation middleware. Consequently, any user with read access including read-only collaborators can delete the entire repository. This vulnerability stems from the API route configuration only utilizing the...

5.6AI score0.00103EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder