Lucene search
K

42 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/07 7:32 p.m.3 views

CVE-2026-2109

A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file /api/undo/ of the component Delete Category Handler. Such manipulation of the argument ID leads to improper authorization. The attack may be launched remotely. The exploit is publicl...

5.5CVSS5.5AI score0.00386EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/07 7:32 p.m.3 views

CVE-2026-2109 jsbroks COCO Annotator Delete Category undo improper authorization

A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file /api/undo/ of the component Delete Category Handler. Such manipulation of the argument ID leads to improper authorization. The attack may be launched remotely. The exploit is publicl...

5.5CVSS5.2AI score0.00386EPSS
Exploits1References4
CVE
CVE
added 2026/02/07 7:32 p.m.24 views

CVE-2026-2109

CVE-2026-2109 affects jsbroks COCO Annotator up to v0.11.1. The vulnerability exists in an unknown function of the file /api/undo/ within the Delete Category Handler, where manipulating the ID argument leads to improper authorization. It can be triggered remotely and a public exploit is available...

8.1CVSS5.5AI score0.00386EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/02/07 7:15 p.m.8 views

CVE-2026-2108

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

7.5CVSS0.00693EPSS
Exploits1References4
OSV
OSV
added 2026/02/07 7:15 p.m.5 views

CVE-2026-2108

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

7.5CVSS5.7AI score
Exploits0References4
Cvelist
Cvelist
added 2026/02/07 7:2 p.m.24 views

CVE-2026-2108 jsbroks COCO Annotator Endpoint long_task denial of service

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

6.9CVSS0.00693EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/07 7:2 p.m.4 views

CVE-2026-2108 jsbroks COCO Annotator Endpoint long_task denial of service

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

6.9CVSS5.2AI score0.00693EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/07 7:2 p.m.7 views

CVE-2026-2108

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

6.9CVSS5.4AI score0.00693EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/02/07 7:2 p.m.7 views

EUVD-2026-5719

A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown function of the file /api/info/longtask of the component Endpoint. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

6.9CVSS5AI score0.00693EPSS
Exploits1References4
CVE
CVE
added 2026/02/07 7:2 p.m.17 views

CVE-2026-2108

The CVE-2026-2108 entry covers jsbroks COCO Annotator up to version 0.11.1. The vulnerability affects the Endpoint component’s /api/info/long_task, where manipulation can cause a denial of service. It is remotely exploitable and has been publicly disclosed; multiple sources note no vendor respons...

7.5CVSS5.4AI score0.00693EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.10 views

PT-2026-6916

Name of the Vulnerable Software and Affected Versions jsbroks COCO Annotator versions up to 0.11.1 Description A flaw exists in jsbroks COCO Annotator that can lead to a denial of service. This issue affects the Endpoint component and involves the /api/info/long task file and an unknown function...

6.9CVSS5.2AI score0.00693EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.8 views

COCO Annotator 安全漏洞

COCO Annotator is a web-based image annotation tool developed by Justin Brooks. It aims to provide versatility and efficient image annotation. COCO Annotator versions 0.11.1 and earlier contain security vulnerabilities, which stem from incorrect operations on components like Endpoint, specificall...

7.5CVSS6.1AI score0.00693EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.5 views

COCO Annotator 授权问题漏洞

COCO Annotator is a web-based image annotation tool developed by Justin Brooks. It aims to provide versatility and efficient image annotation. Versions of COCO Annotator prior to 0.11.1 contained an authorization vulnerability. This vulnerability stemmed from incorrect handling of parameter IDs i...

8.1CVSS6AI score0.00386EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-32933

Malicious code in bioql PyPI...

8.1CVSS4.8AI score0.00802EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 10:48 a.m.5 views

CVE-2024-10141

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRETKEY leads to predictable from observable state. It is possible to initiate the attack remotely. T...

8.1CVSS6.8AI score0.00802EPSS
Exploits1References1
NVD
NVD
added 2024/10/19 3:15 p.m.9 views

CVE-2024-10141

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRETKEY leads to predictable from observable state. It is possible to initiate the attack remotely. T...

8.1CVSS0.00802EPSS
Exploits1References5
OSV
OSV
added 2024/10/19 3:15 p.m.5 views

CVE-2024-10141

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRETKEY leads to predictable from observable state. It is possible to initiate the attack remotely. T...

8.1CVSS6.8AI score
Exploits0References5
Cvelist
Cvelist
added 2024/10/19 3:0 p.m.18 views

CVE-2024-10141 jsbroks COCO Annotator Session predictable state

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRETKEY leads to predictable from observable state. It is possible to initiate the attack remotely. T...

6.3CVSS0.00802EPSS
Exploits1References5
CVE
CVE
added 2024/10/19 3:0 p.m.48 views

CVE-2024-10141

The CVE-2024-10141 issue affects jsbroks COCO Annotator 0.11.1, specifically the Session Handler component where manipulating the SECRET_KEY causes a predictable state from observable state. It can be initiated remotely, with attack complexity described as high and exploitability as difficult. Mu...

8.1CVSS4.7AI score0.00802EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/19 3:0 p.m.13 views

CVE-2024-10141 jsbroks COCO Annotator Session predictable state

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRETKEY leads to predictable from observable state. It is possible to initiate the attack remotely. T...

6.3CVSS4.3AI score0.00802EPSS
Exploits1References5
Rows per page
Query Builder