Lucene search
K

17 matches found

Wired Threat Level
Wired Threat Level
added 2026/06/15 9:0 a.m.15 views

Meta Tapped a Pentagon Supplier to Prototype Face Recognition for Its Glasses

Rank One, whose board includes a former CIA deputy director and a former FBI science chief, supplied face recognition to Meta for internal development of its smart glasses app...

5.3AI score
Exploits0
EUVD
EUVD
added 2026/04/23 12:31 a.m.3 views

EUVD-2026-25117

WeKan before 8.35 contains a missing authorization vulnerability in the Integration REST API endpoints that allows authenticated board members to perform administrative actions without proper privilege verification. Attackers can enumerate integrations including webhook URLs, create new...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 10:16 p.m.5 views

CVE-2026-41454

WeKan before 8.35 contains a missing authorization vulnerability in the Integration REST API endpoints that allows authenticated board members to perform administrative actions without proper privilege verification. Attackers can enumerate integrations including webhook URLs, create new...

8.7CVSS0.00274EPSS
Exploits0References3
CVE
CVE
added 2026/04/22 9:8 p.m.9 views

CVE-2026-41454

CVE-2026-41454 affects WeKan

8.7CVSS5.8AI score0.00274EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/22 9:8 p.m.5 views

CVE-2026-41454

WeKan before 8.35 contains a missing authorization vulnerability in the Integration REST API endpoints that allows authenticated board members to perform administrative actions without proper privilege verification. Attackers can enumerate integrations including webhook URLs, create new...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/22 9:8 p.m.25 views

CVE-2026-41454 WeKan < 8.35 Missing Authorization via Integration REST API

WeKan before 8.35 contains a missing authorization vulnerability in the Integration REST API endpoints that allows authenticated board members to perform administrative actions without proper privilege verification. Attackers can enumerate integrations including webhook URLs, create new...

8.7CVSS0.00274EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/16 3:30 p.m.8 views

EUVD-2026-12411

Mattermost Plugins versions =11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks on comment block modifications, which allows an authorised attacker with editor permission to modify comments created by other board members. Mattermost Advisory ID: MMSA-2025-00559...

4.3CVSS5.8AI score0.00162EPSS
Exploits1References2
NVD
NVD
added 2026/03/16 2:19 p.m.5 views

CVE-2026-2461

Mattermost Plugins versions =11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks on comment block modifications, which allows an authorised attacker with editor permission to modify comments created by other board members. Mattermost Advisory ID: MMSA-2025-00559...

4.3CVSS0.00162EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/16 12:26 a.m.5 views

CVE-2025-65782

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authorization flaw in card update handling allows board members and potentially other authenticated users to add/remove arbitrary user IDs in vote.positive / vote.negative arrays, enabling vo...

6.5CVSS7AI score0.00225EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/15 3:30 p.m.6 views

EUVD-2025-203371

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authorization flaw in card update handling allows board members and potentially other authenticated users to add/remove arbitrary user IDs in vote.positive / vote.negative arrays, enabling vo...

6.5AI score0.00225EPSS
Exploits0References5
OSV
OSV
added 2025/12/15 2:15 p.m.5 views

CVE-2025-65782

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed in 18.16. Authorization flaw in card update handling allows board members and potentially other authenticated users to add/remove arbitrary user IDs in vote.positive / vote.negative arrays, enabling vo...

6.5CVSS6.8AI score
Exploits0References4
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/09/08 12:0 a.m.13 views

TrickBot & Conti Sanctions: Implications for CISOs & Boardrooms

Discover what the increased regulatory risk due to recent US and UK sanctions imposed on TrickBot and Conti cybercriminals mean for CISOs and board members...

7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/09/08 12:0 a.m.9 views

TrickBot & Conti Sanctions: Implications for CISOs & Boardrooms

Discover what the increased regulatory risk due to recent US and UK sanctions imposed on TrickBot and Conti cybercriminals mean for CISOs and board members...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/10/16 3:36 p.m.27 views

ThreatList: Half of Execs Feel Unprepared to Respond to a Cyber-Incident

Nearly half 46 percent of executives in a Deloitte poll say their organizations have experienced a cybersecurity incident over the past year — and that they’re still no closer to being ready for the next event. The survey, of more than 3,150 professionals taken during a Deloitte Dbriefs webcast o...

0.9AI score
Exploits0References3
Microsoft Secure
Microsoft Secure
added 2018/06/12 7:0 p.m.37 views

Updating your cybersecurity strategy to enable and accelerate digital transformation

This post is authored by Cyril Voisin, Chief Security Advisor, Enterprise Cybersecurity Group. Nowadays every company is becoming a digital company to some extent. Digital transformation changes the way business is done. For example, it puts more control into the hands of employees, who now deman...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/30 12:0 a.m.37 views

Joomla Jtag Members Directory 5.3.7 SQL Injection

Title: Joomla Jtag Members Directory 5.3.7 - SQL injection Credit: Bilal KARDADOU Vendor: https://joomlatag.com URL: https://extensions.joomla.org/extensions/extension/clients-a-communities/members-lists/jtag-members-directory/ Product: 'Joomla Jtag Members Directory 5.3.7' Developer: JoomlaTag...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2017/04/06 7:3 a.m.17 views

U.S. Trade Group Hacked by Chinese Hackers ahead of Trump-Xi Trade Summit

Researchers have uncovered a Chinese cyber-espionage against the United States ahead of the trade summit on Thursday between US President Donald Trump and China's President Xi Jinping. According to a new report published today by Fidelis Cybersecurity firm, the Chinese APT10 hacking group implant...

6.7AI score
Exploits0
Rows per page
Query Builder