Lucene search
K

103 matches found

NVD
NVD
added 2026/04/09 5:16 p.m.9 views

CVE-2026-39976

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS0.00289EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/09 4:50 p.m.2 views

CVE-2026-39976

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2026/04/09 4:50 p.m.4 views

EUVD-2026-20970

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/04/09 4:50 p.m.25 views

CVE-2026-39976 Laravel Passport's TokenGuard Authenticates Unrelated User for Client Credentials Tokens

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value ...

7.1CVSS0.00289EPSS
Exploits1References5
CVE
CVE
added 2026/04/09 4:50 p.m.33 views

CVE-2026-39976

CVE-2026-39976 affects Laravel Passport's TokenGuard in versions 13.0.0–13.7.0. The underlying league/oauth2-server sets the JWT sub claim to the client identifier (no user) and TokenGuard passes this value to retrieveById() without validating that it is a user, allowing a client_credentials toke...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.10 views

passport 授权问题漏洞

Passport is a Node.js authentication middleware developed by Jared Hanson, a personal developer in the United States. Versions of Passport prior to 13.0.0 and 13.7.1 had an authorization vulnerability. This vulnerability stemmed from an client-credentials token authentication process, which could...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.16 views

PT-2026-31663

Laravel Passport provides OAuth2 server support to Laravel. From 13.0.0 to before 13.7.1, there is an Authentication Bypass for client credentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References6
OSV
OSV
added 2026/04/08 7:57 p.m.2 views

GHSA-349C-2H2F-MXF6 Laravel Passport: TokenGuard Authenticates Unrelated User for Client Credentials Tokens

Impact Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value to retrieveById without validating it's actually a user identifier, potentially resolving an...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References7
Snyk
Snyk
added 2026/04/08 7:57 p.m.5 views

Improper Preservation of Permissions

Overview Affected versions of this package are vulnerable to Improper Preservation of Permissions in the authentication process. An attacker can gain unauthorized access to user accounts by exploiting the handling of clientcredentials tokens, which may allow a client token to be misinterpreted as...

7.1CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/08 7:57 p.m.13 views

Laravel Passport: TokenGuard Authenticates Unrelated User for Client Credentials Tokens

Impact Authentication Bypass for clientcredentials tokens. the league/oauth2-server library sets the JWT sub claim to the client identifier since there's no user. The token guard then passes this value to retrieveById without validating it's actually a user identifier, potentially resolving an...

7.1CVSS5.8AI score0.00289EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2026/03/27 12:46 a.m.14 views

CVE-2026-33745

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.39.0, the cpp-httplib HTTP client forwards stored Basic Auth, Bearer Token, and Digest Auth credentials to arbitrary hosts when following cross-origin HTTP redirects 301/302/307/308. A malicious or...

7.4CVSS5.5AI score0.00262EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.3 views

Microsoft Graph Cloud Intelligence Collector

The Microsoft Graph Cloud Intelligence Collector is a Metasploit Auxiliary module designed to interact with the Microsoft Graph API to gather information from Microsoft 365 and Microsoft Azure Active Directory environments. The module authenticates using the OAuth2 Client Credentials flow with a...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.6 views

SharePoint / OneDrive Explorer via Microsoft Graph API

The SharePoint / OneDrive Explorer is a Metasploit Auxiliary module designed to interact with Microsoft Graph API in order to explore and retrieve information from Microsoft SharePoint and Microsoft OneDrive environments. The module authenticates using OAuth2 Client Credentials with a Tenant ID,...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/06 7:45 p.m.6 views

CVE-2026-21621

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS5.8AI score0.00323EPSS
Exploits0References1
NVD
NVD
added 2026/03/05 8:16 p.m.6 views

CVE-2026-21621

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS0.00323EPSS
Exploits0References4
OSV
OSV
added 2026/03/05 7:20 p.m.5 views

CVE-2026-21621 Improper Scope Enforcement in OAuth client_credentials Flow Allows Read-Only API Key to Escalate to Full Access

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS6AI score0.00323EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/03/05 7:20 p.m.10 views

CVE-2026-21621 Improper Scope Enforcement in OAuth client_credentials Flow Allows Read-Only API Key to Escalate to Full Access

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS5.8AI score0.00323EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/05 7:20 p.m.28 views

CVE-2026-21621 Improper Scope Enforcement in OAuth client_credentials Flow Allows Read-Only API Key to Escalate to Full Access

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS0.00323EPSS
Exploits0References4
OSV
OSV
added 2026/03/05 7:20 p.m.8 views

EEF-CVE-2026-21621 Improper Scope Enforcement in OAuth client_credentials Flow Allows Read-Only API Key to Escalate to Full Access

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS6AI score0.00323EPSS
Exploits0References3
CVE
CVE
added 2026/03/05 7:20 p.m.17 views

CVE-2026-21621

CVE-2026-21621 affects the Hex.pm application (hexpm/hexpm). The vulnerability arises from the OAuth client_credentials flow in Elixir.HexpmWeb.API.OAuthController (validate_scopes_against_key/2), where a read-only API key (domain: api, resource: read) loses its scope and is issued a broad api sc...

7CVSS6AI score0.00323EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder