CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/02/16 9:58 a.m.•30 views

CVE-2026-0997 Mattermost Zoom Plugin channel preference API lacks authorization checks

Mattermost versions 11.1.x = 11.1.2, 10.11.x = 10.11.9, 11.2.x = 11.2.1 and Mattermost Plugin Zoom versions =1.11.0 fail to validate the authenticated user when processing /plugins/zoom/api/v1/channel-preference, which allows any logged-in user to change Zoom meeting restrictions for arbitrary...

4.3CVSS0.00042EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-24068

Malicious code in bioql PyPI...

5.4CVSS6.1AI score0.00092EPSS

RedhatCVE•added 2025/05/23 2:32 a.m.•3 views

CVE-2023-1866

The YourChannel plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.4. This is due to missing or incorrect nonce validation on the clearKeys function. This makes it possible for unauthenticated attackers to reset the plugin's channel settings via...

5.4CVSS6.6AI score0.00092EPSS

RedhatCVE•added 2025/04/25 11:42 p.m.•6 views

CVE-2025-2564

Mattermost versions 10.5.x = 10.5.1, 10.4.x = 10.4.3, 9.11.x = 9.11.9 fail to properly enforce the 'Allow users to view/update archived channels' System Console setting, which allows authenticated users to view members and member information of archived channels even when this setting is disabled...

4.3CVSS6.3AI score0.00195EPSS

Snyk•added 2025/03/21 9:30 a.m.•1 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to improper enforcement of channel conversion restrictions. An attacker can exploit this flaw to change channel visibility settings without proper authorization by manipulating channel settings. Remediation...

5.4CVSS6.9AI score0.00228EPSS

ATTACKERKB•added 2023/04/05 2:15 p.m.•1 views

CVE-2023-1866

The YourChannel plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.3. This is due to missing or incorrect nonce validation on the clearKeys function. This makes it possible for unauthenticated attackers to reset the plugin's channel settings via...

5.4CVSS6.6AI score0.00092EPSS

Exploits0References3

CVE•added 2023/04/05 1:23 p.m.•50 views

CVE-2023-1866

CVE-2023-1866 concerns the YourChannel WordPress plugin (

5.4CVSS6.6AI score0.00092EPSS

Exploits0References3Affected Software1

WPVulnDB•added 2023/04/05 12:0 a.m.•22 views

YourChannel < 1.2.5 - Multiple CSRF

The plugin does not have CSRF checks in some places, which could allow attackers to make logged in admins to reset and change the plugin's quick language translation, general and channel settings via CSRF attacks...

5.4CVSS6.8AI score0.00093EPSS

Exploits0Affected Software1

Metasploit•added 2012/03/31 5:15 a.m.•17 views

Linux Gather XChat Enumeration

This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply...

6.8AI score

Exploits0

OpenVAS•added 2009/02/27 12:0 a.m.•11 views

Fedora Update for libxfce4mcs FEDORA-2007-4385

Check for the Version of libxfce4mcs OpenVAS Vulnerability Test Fedora Update for libxfce4mcs FEDORA-2007-4385 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

OpenVAS•added 2009/02/27 12:0 a.m.•15 views

Fedora Update for xfce-mcs-manager FEDORA-2007-4368

Check for the Version of xfce-mcs-manager OpenVAS Vulnerability Test Fedora Update for xfce-mcs-manager FEDORA-2007-4368 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...

OpenVAS•added 2009/02/27 12:0 a.m.•13 views

Fedora Update for xfce-mcs-plugins FEDORA-2007-4368

Check for the Version of xfce-mcs-plugins OpenVAS Vulnerability Test Fedora Update for xfce-mcs-plugins FEDORA-2007-4368 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...

OpenVAS•added 2009/02/27 12:0 a.m.•19 views

Fedora Update for libxfce4mcs FEDORA-2007-4368

Check for the Version of libxfce4mcs OpenVAS Vulnerability Test Fedora Update for libxfce4mcs FEDORA-2007-4368 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...