Lucene search
K

132 matches found

EUVD
EUVD
added 2 days ago9 views

EUVD-2026-43230

Capgo before 12.128.2 allows email address changes without requiring current password re-authentication or verification of the existing email address. An attacker with access to a valid session cookie or authenticated browser can change the account email to gain control of account recovery and...

8.4CVSS6.1AI score0.00244EPSS
Exploits0References2
Snyk
Snyk
added 6 days ago4 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error via the CookieJar process. An attacker can access or manipulate cookies belonging to other hosts by exploiting improper domain matching for IP-address or bare-numeric domains. Remediation Upgrade guzzlehttp/guzzl...

6.1CVSS6.1AI score0.00115EPSS
Exploits0References2
OSV
OSV
added 2026/07/02 2:13 p.m.3 views

PYSEC-2026-750 Server-Side Request Forgery in scout-browser

Pypi package scout-browser GitHub repository clinical-genomics/scout prior to v4.52 is vulnerable to server-side request forgery. An attacker could make the application perform arbitrary requests to steal cookies, request access to private areas, or lead to cross-site scripting...

8.2CVSS5.7AI score0.01095EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2026/06/29 5:19 p.m.6 views

CVE-2026-57948 Pinpoint - Insecure Session Cookie Attributes in pinpointJwt

Pinpoint through version 3.1.0 contains an insecure session management vulnerability that allows attackers to access the pinpointJwt session cookie due to missing HttpOnly and Secure attributes, enabling JavaScript access via document.cookie and cleartext transmission over HTTP. Attackers can...

7.6CVSS5.6AI score0.00126EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/22 7:56 p.m.6 views

CVE-2026-44727

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS5.9AI score0.00227EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/22 7:56 p.m.6 views

CVE-2026-44727

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS5.9AI score0.00227EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/22 7:56 p.m.1 views

CVE-2026-44727 Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS5.9AI score0.00227EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/22 7:56 p.m.23 views

CVE-2026-44727 Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS0.00227EPSS
Exploits0References2
CVE
CVE
added 2026/06/22 5:15 p.m.47 views

CVE-2026-54290

Hono (web framework) prior to 4.12.25 is vulnerable to a CORS misconfiguration: with credentials: true and no explicit origin (default wildcard), the CORS middleware reflects the request Origin and sets Access-Control-Allow-Credentials: true, allowing credentialed cross‑origin reads of cookie‑pro...

7.1CVSS5.9AI score0.00248EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.25 views

PT-2026-50175

Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.25.7 n8n versions prior to 2.26.2 Description When @n8n/mcp-browser is operated in HTTP transport mode using the --transport http flag, the MCP endpoint allows session initialization and tool invocation requests without...

10CVSS5.9AI score0.00403EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/04/24 4:18 p.m.20 views

Budibase auth session cookies are set with httpOnly:false — any XSS can lead to full account takeover

Summary The budibase:auth cookie containing the JWT session token is set with httpOnly: false at packages/backend-core/src/utils/utils.ts:218. JavaScript can read this cookie via document.cookie. Given that Budibase has had XSS vulnerabilities GHSA-gp5x-2v54-v2q5 — stored XSS via unsanitized enti...

8.1CVSS5.5AI score0.00283EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/04/02 6:16 p.m.8 views

CVE-2026-34828

listmonk is a standalone, self-hosted, newsletter and mailing list manager. From version 4.1.0 to before version 6.1.0, a session management vulnerability allows previously issued authenticated sessions to remain valid after sensitive account security changes, specifically password reset and...

7.1CVSS0.003EPSS
Exploits2References3
Github Security Blog
Github Security Blog
added 2026/02/17 4:45 p.m.37 views

OpenClaw's Browser Relay /cdp websocket is missing auth which could allow cross-tab cookie access

Summary In affected versions, the Browser Relay /cdp WebSocket endpoint did not require an authentication token. As a result, a website running in the browser could potentially connect to the local relay via loopback WebSocket and use CDP to access cookies from other open tabs and run JavaScript ...

8.1CVSS5.8AI score0.00295EPSS
Exploits0References6Affected Software2
RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.7 views

CVE-2021-41101

wire-server is an open-source back end for Wire, a secure collaboration platform. Before version 2.106.0, the CORS Access-Control-Allow-Origin header set by nginz is set for all subdomains of .wire.com including wire.com. This means that if somebody were to find an XSS vector in any of the...

5.7CVSS6.1AI score0.00685EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/17 12:0 a.m.4 views

PT-2025-51941

Name of the Vulnerable Software and Affected Versions ChurchCRM versions prior to 6.0.0 Description The application inadequately sanitizes or encodes user-supplied HTML/JS, leading to stored cross-site scripting XSS. This allows an attacker to execute JavaScript in the browsers of other users...

6.2CVSS6AI score0.0017EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/10/22 6:18 p.m.10 views

CVE-2025-12031

HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute may allow reading the sensitive cookies from the javascript contextThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

5.3CVSS7AI score0.0019EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/21 5:22 p.m.8 views

CVE-2025-12031 HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute

HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute may allow reading the sensitive cookies from the javascript contextThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

5.3CVSS0.0019EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2003-0586

Malware in sbrugna...

7.5CVSS6.1AI score0.04409EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-7004

Malware in sbrugna...

7.5CVSS7.5AI score0.01387EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2003-0508

Malware in sbrugna...

7.5CVSS6.4AI score0.05445EPSS
Exploits1References3
Rows per page
Query Builder