5 matches found
PT-2026-26493
Name of the Vulnerable Software and Affected Versions Parse Server versions prior to 8.6.52 Parse Server versions prior to 9.6.0-alpha.41 Description A flaw exists in Parse Server that allows an attacker to bypass authentication and log in as any user who has linked a third-party authentication...
CVE-2024-29849
Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface...
CVE-2024-5204
The Swiss Toolkit For WP plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.7. This is due to the plugin storing custom data in post metadata without an underscore prefix. This makes it possible for authenticated attackers with contributor-level and...
The vulnerability of the software platform based on Git for collaborative code development in GitLab Enterprise Edition is related to deficiencies in the authentication process, which allows a malicious actor to execute pipeline tasks under the name of any user.
The vulnerability of the Git-based software platform for collaborative code development in GitLab Enterprise Edition is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute pipeline tasks on behalf of any user...
Logic flaw vulnerability in the uc***.php file in the frontend of Five Fingers CMS
Five Fingers CMS is an open source content management system. A logic flaw vulnerability exists in the uc.php file in the frontend of Five Fingers CMS. Attackers can use the vulnerability to log in to any user , access sensitive information , to perform unauthorized operations...