43 matches found
CVE-2025-12370 Takeads <= 1.0.13 - Missing Authorization to Plugin Settings Deletion
The Takeads plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.0.13. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access an...
EUVD-2022-7675
Malicious code in bioql PyPI...
EUVD-2024-34755
Malicious code in bioql PyPI...
EUVD-2023-34023
Malicious code in bioql PyPI...
EUVD-2022-7210
Malicious code in bioql PyPI...
EUVD-2025-16351
Malicious code in bioql PyPI...
EUVD-2022-7705
Malicious code in bioql PyPI...
EUVD-2022-5904
Malicious code in bioql PyPI...
EUVD-2022-37352
Malicious code in bioql PyPI...
EUVD-2025-6208
Malicious code in bioql PyPI...
EUVD-2023-48608
Malicious code in bioql PyPI...
EUVD-2024-19999
Malicious code in bioql PyPI...
PT-2025-31393 · Autogpt · Autogpt
Name of the Vulnerable Software and Affected Versions: AutoGPT versions prior to 0.6.16 Description: AutoGPT is a platform for creating, deploying, and managing continuous artificial intelligence agents. The external API’s get graph execution results endpoint has an authorization bypass. While th...
CVE-2025-5681
Authorization Bypass Through User-Controlled Key vulnerability in Turtek Software Eyotek allows Exploitation of Trusted Identifiers. This issue affects Eyotek: before 23.06.2025...
CVE-2024-43288
Authorization Bypass Through User-Controlled Key vulnerability in gVectors Team wpForo Forum.This issue affects wpForo Forum: from n/a through 2.3.4...
CVE-2025-48371 OpenFGA Authorization Bypass
OpenFGA is an authorization/permission engine. OpenFGA versions 1.8.0 through 1.8.12 corresponding to Helm chart openfga-0.2.16 through openfga-0.2.30 and docker 1.8.0 through 1.8.12 are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users are affected...
CVE-2021-3964
elgg is vulnerable to Authorization Bypass Through User-Controlled Key...
Next.js 15.x < 15.2.3 Authorization Bypass
The version of Next.js installed on the remote host is 11.1.4 prior to 12.3.5, 13.0.x prior to 13.5.9, 14.x prior to 14.2.25 or 15.x prior to 15.2.3. It is, therefore, affected by Authorization Bypass if the authorization check occurs in middleware. Note that the scanner has not attempted to...
Debian dsa-5857 : openjdk-17-dbg - security update
The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5857 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5857-1 [email protected] https://www.debian.org/security/ Moritz...
CVE-2024-10205 Authorization bypass vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer
Authentication Bypass vulnerability in Hitachi Ops Center Analyzer on Linux, 64 bit Hitachi Ops Center Analyzer detail view component, Hitachi Infrastructure Analytics Advisor on Linux, 64 bit Hitachi Data Center Analytics component .This issue affects Hitachi Ops Center Analyzer: from 10.0.0-00...