Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Cvelist
Cvelistadded 2026/05/04 6:28 p.m.25 views

CVE-2026-42230 n8n: Open Redirect in MCP OAuth Consent Flow

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /mcp-oauth/register endpoint accepted OAuth client registrations without authentication, allowing arbitrary redirecturi values to be registered. When a user denies the MCP OAuth consent dialog,...

5.1CVSS0.00056EPSS
Exploits0References1
CVE
CVEadded 2026/05/04 6:28 p.m.11 views

CVE-2026-42230

Affected software: n8n open source workflow automation platform. Vulnerability: Open redirect via the MCP OAuth flow. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /mcp-oauth/register endpoint allowed unauthenticated OAuth client registrations, enabling arbitrary redirect_uri values. If a u...

6.1CVSS5.9AI score0.00056EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2026/04/29 9:10 p.m.1 views

GHSA-F6X8-65Q6-J9M9 n8n has Open Redirect in MCP OAuth Consent Flow

Impact The /mcp-oauth/register endpoint accepted OAuth client registrations without authentication, allowing arbitrary redirecturi values to be registered. When a user denies the MCP OAuth consent dialog, the handleDeny handler redirects the user to the registered redirecturi without validation,...

5.1CVSS5.9AI score0.00056EPSS
Exploits0References3
OSV
OSVadded 2023/02/12 5:1 p.m.9 views

OPENSUSE-SU-2023:0044-1 Security update for opera

This update for opera fixes the following issues: Update to 95.0.4635.25 CHR-9173 Update Chromium on desktop-stable-109-4635 to 109.0.5414.120 DNA-104150 Turn on consent-flow-settings on master DNA-104733 Crash at extensions::SyncPrivateGetSyncStateFunction::Run DNA-104761 Translations for O95...

8.8CVSS8.7AI score0.00378EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linuxadded 2022/10/31 12:0 a.m.31 views

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10181-1 Rating: important References: Cross-References: CVE-2022-3445 CVE-2022-3446 CVE-2022-3447 CVE-2022-3448 CVE-2022-3449 CVE-2022-3450 Affected Products: openSUSE Leap 15.3:NonFree An update that fixes 6...

8.8CVSS6.6AI score0.00755EPSS
Exploits0
FireEye
FireEyeadded 2018/05/21 11:15 a.m.519 views

Shining a Light on OAuth Abuse with PwnAuth

Introduction Spear phishing attacks are seen as one of the biggest cyber threats to an organization. It only takes one employee to enter their credentials or run some malware for an entire organization to become compromised. As such, companies devote significant resources to preventing credential...

Exploits0
Rows per page
Query Builder