CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/03/26 3:11 p.m.•2 views

CVE-2026-30236

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, when editing a project budget and planning the labor cost, it was not checked that the user that was planned in the budget is actually a project member. This exposed the user's default rate if one was set up to...

Vulnrichment•added 2026/03/11 4:25 p.m.•2 views

CVE-2026-30236 OpenProject users that are not project members can be used to calculate Labor Budget, leaking their global hourly rate

EUVD•added 2026/03/11 4:25 p.m.•1 views

EUVD-2026-11236

Cvelist•added 2026/03/11 4:25 p.m.•22 views

CVE-2026-30236 OpenProject users that are not project members can be used to calculate Labor Budget, leaking their global hourly rate

4.3CVSS0.0004EPSS

CVE•added 2026/03/11 4:25 p.m.•4 views

CVE-2026-30236

CVE-2026-30236 affects OpenProject before 17.2.0. When editing a project budget and planning labor costs, the system did not verify that the budget-assigned user is a project member, exposing that user’s default rate to non-members. The pre-calculation endpoint used to render cost previews simila...

Exploits0References1Affected Software1

OSV•added 2026/03/11 4:25 p.m.•1 views

CVE-2026-30236 OpenProject users that are not project members can be used to calculate Labor Budget, leaking their global hourly rate

RedhatCVE•added 2026/01/21 10:24 p.m.•3 views

Exploits0References3

CVE-2026-21979

Vulnerability in the Oracle Planning and Budgeting Cloud Service product of Oracle Hyperion component: EPM Agent. The supported version that is affected is 25.04.07. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Planning and Budgeti...

4.2CVSS5.5AI score0.00021EPSS

RedhatCVE•added 2026/01/21 10:24 p.m.•3 views

CVE-2026-21922

4.2CVSS5.4AI score0.00019EPSS

EUVD•added 2026/01/21 12:31 a.m.•2 views

EUVD-2026-3533

4.2CVSS5.5AI score0.00021EPSS

EUVD•added 2026/01/21 12:31 a.m.•2 views

EUVD-2026-3587

4.2CVSS5.5AI score0.00019EPSS

NVD•added 2026/01/20 10:16 p.m.•4 views

CVE-2026-21979

4.2CVSS0.00021EPSS

NVD•added 2026/01/20 10:15 p.m.•2 views

CVE-2026-21922

4.2CVSS0.00019EPSS

ATTACKERKB•added 2026/01/20 9:56 p.m.•1 views

CVE-2026-21979

4.2CVSS7.2AI score0.00021EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/01/20 9:56 p.m.•2 views

CVE-2026-21922

4.2CVSS5.4AI score0.00019EPSS

Exploits0References2Affected Software1

CNNVD•added 2026/01/20 12:0 a.m.•0 views

Oracle Hyperion security vulnerabilities

Oracle Hyperion is a financial modeling application developed by Oracle Corporation in the United States. This software provides functions such as financial settlement and report generation. A security vulnerability exists in the Oracle Planning and Budgeting Cloud Service version 25.04.07 of...

4.2CVSS7.1AI score0.00021EPSS

Positive Technologies•added 2026/01/20 12:0 a.m.•2 views

PT-2026-3726

Name of the Vulnerable Software and Affected Versions Oracle Planning and Budgeting Cloud Service versions 25.04.07 Description A flaw exists within the Oracle Planning and Budgeting Cloud Service, specifically in the EPM Agent component. A highly privileged attacker with access to the system can...

4.2CVSS7.3AI score0.00021EPSS

Exploits0References4

Positive Technologies•added 2026/01/20 12:0 a.m.•4 views

PT-2026-3672

Name of the Vulnerable Software and Affected Versions Oracle Planning and Budgeting Cloud Service versions 25.04.07 Description A flaw exists in the Oracle Planning and Budgeting Cloud Service, specifically within the EPM Agent component. A highly privileged attacker with access to the system can...

4.2CVSS7.3AI score0.00019EPSS

Exploits0References3

CNNVD•added 2026/01/20 12:0 a.m.•1 views

Oracle Hyperion security vulnerabilities

4.2CVSS7.1AI score0.00019EPSS