Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

99 matches found

RedhatCVE
RedhatCVEadded 2026/03/06 1:34 a.m.1 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

8.8CVSS5.9AI score0.00052EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/06 1:34 a.m.3 views

CVE-2026-26418

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network...

7.5CVSS6AI score0.00148EPSS
Exploits0References1
NVD
NVDadded 2026/03/05 7:16 p.m.6 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

8.1CVSS0.0004EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/05 12:0 a.m.24 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

0.00052EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.3 views

Tata Consultancy Services Cognix Recon Client 安全漏洞

Tata Consultancy Services Cognix Recon Client is a financial reconciliation software developed by Tata Consultancy Services in India. Version 3.0 of Tata Consultancy Services Cognix Recon Client contains a security vulnerability. This vulnerability stems from an access control flaw in the passwor...

8.1CVSS5.8AI score0.0004EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/05 12:0 a.m.0 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

5.8AI score0.00052EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.4 views

PT-2026-23477

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description A broken access control issue exists in the password reset functionality. Authenticated users can reset passwords for any user account by sending specially crafted requests...

8.1CVSS5.8AI score0.0004EPSS
Exploits0References7
CVE
CVEadded 2026/03/05 12:0 a.m.4 views

CVE-2026-26418

CVE-2026-26418 affects Tata Consultancy Services Cognix Recon Client v3.0. The issue is missing authentication and authorization in the web API, allowing remote attackers to access application functionality without restriction over the network. The available description does not specify affected ...

7.5CVSS6AI score0.00148EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/05 12:0 a.m.1 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

6AI score0.0004EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.2 views

PT-2026-23478

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description A lack of proper authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 enables remote attackers to access application...

7.5CVSS5.8AI score0.00148EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2026/03/05 12:0 a.m.1 views

PT-2026-23476

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description An authorization bypass exists in Tata Consultancy Services Cognix Recon Client version 3.0. Authenticated users can escalate privileges across role boundaries by sending...

8.8CVSS5.8AI score0.00052EPSS
Exploits0References6
CVE
CVEadded 2025/12/22 1:46 p.m.10 views

CVE-2025-14018

CVE-2025-14018 describes an Unquoted Search Path or Element vulnerability in NetBT Consulting Services Inc. E-Fatura prior to version 1.2.15. The root cause is unquoted configuration/file search paths that can be manipulated to redirect access to libraries. Impact per the sources is high confiden...

7.3CVSS5.8AI score0.00204EPSS
Exploits3References2
Cvelist
Cvelistadded 2025/12/22 1:46 p.m.16 views

CVE-2025-14018 Unquoted Service Path in NetBT Consultancy's e-Fatura

Unquoted Search Path or Element vulnerability in NetBT Consulting Services Inc. E-Fatura allows Leveraging/Manipulating Configuration File Search Paths, Redirect Access to Libraries. This issue affects e-Fatura: before 1.2.15...

7.3CVSS0.00204EPSS
Exploits3References2
RedhatCVE
RedhatCVEadded 2025/10/23 3:14 p.m.2 views

CVE-2025-49946

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cynob IT Consultancy Auto Login After Registration auto-login-after-registration allows Reflected XSS.This issue affects Auto Login After Registration: from n/a through = 1.0.0...

7.1CVSS6.4AI score0.00029EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/22 3:31 p.m.2 views

EUVD-2025-35515

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cynob IT Consultancy Auto Login After Registration auto-login-after-registration allows Reflected XSS.This issue affects Auto Login After Registration: from n/a through = 1.0.0...

5.9AI score0.00029EPSS
Exploits0References2
NVD
NVDadded 2025/10/22 3:15 p.m.2 views

CVE-2025-49946

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Cynob IT Consultancy Auto Login After Registration auto-login-after-registration allows Reflected XSS.This issue affects Auto Login After Registration: from n/a through = 1.0.0...

7.1CVSS0.00029EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/22 12:0 a.m.3 views

PT-2025-43207

Name of the Vulnerable Software and Affected Versions Cynob IT Consultancy Auto Login After Registration versions through 1.0.0 Description The Auto Login After Registration component contains a flaw related to improper input handling during web page generation, which allows for Reflected...

7.1CVSS6.3AI score0.00029EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-30279

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00144EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-4050

Malicious code in bioql PyPI...

7.1CVSS9.1AI score0.0011EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-29021

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00079EPSS
Exploits0References1
Rows per page
Query Builder