Lucene search
K

434 matches found

Cvelist
Cvelist
added 2026/04/30 6:21 p.m.35 views

CVE-2026-35514 Unauthenticated Account Registration via /user/invited Bypasses All Signup Restrictions in Chartbrew

Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, the endpoint POST /user/invited does not validate any invite token, authentication header, or session. Any unauthenticated attacker can call this endpoi...

6.5CVSS0.00243EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/23 9:0 a.m.167 views

tecno_xss_hotfix

tecnoxsshotfix Security hotfix module for PrestaShop — patc...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/17 10:16 p.m.5 views

CVE-2026-40304

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, the unaccess handler controller/unaccess.go contains a logical error in its ownership guard: when a frontend record has environmentid = NULL the marker for admin-created global frontends, the conditio...

5.3CVSS0.00286EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/17 9:4 p.m.3 views

CVE-2026-40304

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, the unaccess handler controller/unaccess.go contains a logical error in its ownership guard: when a frontend record has environmentid = NULL the marker for admin-created global frontends, the conditio...

5.3CVSS5.7AI score0.00286EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/16 11:36 p.m.5 views

BIT-AUTHENTIK-2023-26481 Insufficient user check in FlowTokens by Email stage

authentik is an open-source Identity Provider. Due to an insufficient access check, a recovery flow link that is created by an admin or sent via email by an admin can be used to set the password for any arbitrary user. This attack is only possible if a recovery flow exists, which has both an...

9.1CVSS5.7AI score0.00275EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/16 10:48 p.m.6 views

Paperclip: Approval decision attribution spoofing via client-controlled `decidedByUserId` in paperclip server

Summary The approval-resolution endpoints POST /approvals/:id/approve, /reject, /request-revision accept a client-supplied decidedByUserId field in the request body and write it verbatim into the authoritative approvals.decidedByUserId column — without cross-checking it against the authenticated...

6.1AI score
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/08 7:34 p.m.4 views

CVE-2026-35607

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.1, the fix in commit b6a4fb1 "self-registered users don't get execute perms" stripped Execute permission and Commands from users created via the...

8.8CVSS6.1AI score0.00383EPSS
Exploits1References1
Circl
Circl
added 2026/04/08 2:0 p.m.4 views

CVE-2023-6825

creationtimestamp| type| source ---|---|--- 2026-04-08 14:00:52+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-6825.yaml 2026-04-10 21:03:06+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mj67urtpyt27...

9.9CVSS7.3AI score0.06009EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 12:5 a.m.3 views

EUVD-2026-19782

File Browser: Proxy auth auto-provisioned users inherit Execute permission and Commands...

8.1CVSS5.9AI score0.00383EPSS
Exploits1References3
NVD
NVD
added 2026/04/07 5:16 p.m.5 views

CVE-2026-35607

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.1, the fix in commit b6a4fb1 "self-registered users don't get execute perms" stripped Execute permission and Commands from users created via the...

8.8CVSS0.00383EPSS
Exploits1References2
CVE
CVE
added 2026/03/31 3:8 p.m.11 views

CVE-2026-34574

Parse Server vulnerability CVE-2026-34574 affects Parse Server prior to 8.6.69 and 9.7.0-alpha.14. An authenticated user can bypass the immutability guard on session fields (expiresAt, createdWith) by sending a null value in a PUT to the session update endpoint, effectively nullifying session exp...

5.4CVSS5.7AI score0.0021EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/27 3:42 p.m.8 views

TSPortal's Uncontrolled User Creation via Validation Side Effects Leads to Potential Denial of Service

Summary A flaw in TSPortal allowed attackers to create arbitrary user records in the database by abusing validation logic. While validation correctly rejected invalid usernames, a side effect within a validation rule caused user records to be created regardless of whether the request succeeded...

6.5CVSS5.8AI score0.00293EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/03/26 12:16 p.m.3 views

CVE-2018-25208

qdPM 9.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through filterby parameters. Attackers can submit malicious POST requests to the timeReport endpoint with crafted filterbyCommentCreatedFrom and...

8.8CVSS0.00337EPSS
Exploits1References4
NVD
NVD
added 2026/03/24 7:16 p.m.4 views

CVE-2026-33417

Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.7.2, password reset tokens in Wallos never expire. The passwordresets table includes a createdat timestamp column, but the token validation logic never checks it. A password reset token remains valid...

7.1CVSS0.00264EPSS
Exploits1References2
CVE
CVE
added 2026/03/24 6:1 p.m.10 views

CVE-2026-33417

Wallos is an open-source self-hosted personal subscription tracker. Multiple sources confirm a vulnerability in versions prior to 4.7.2 where password reset tokens never expire because the token validation logic does not check the token’s created_at timestamp in the password_resets table. The con...

7.1CVSS5.7AI score0.00264EPSS
Exploits1References2Affected Software1
Snyk
Snyk
added 2026/03/24 4:34 p.m.4 views

Incorrect Authorization

Overview parse-server is a version of the Parse backend that can be deployed to any infrastructure that can run Node.js. Affected versions of this package are vulnerable to Incorrect Authorization via session fields such as expiresAt and createdWith. An authenticated user can modify...

5.4CVSS5.9AI score0.00255EPSS
Exploits0References2
OSV
OSV
added 2026/03/24 4:34 p.m.5 views

GHSA-JC39-686J-WP6Q Parse Server's Session Update endpoint allows overwriting server-generated session fields

Impact An authenticated user can overwrite server-generated session fields such as expiresAt and createdWith when updating their own session via the REST API. This allows bypassing the server's configured session lifetime policy, making a session effectively permanent. Patches The fix blocks...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/03/24 4:34 p.m.18 views

Parse Server's Session Update endpoint allows overwriting server-generated session fields

Impact An authenticated user can overwrite server-generated session fields such as expiresAt and createdWith when updating their own session via the REST API. This allows bypassing the server's configured session lifetime policy, making a session effectively permanent. Patches The fix blocks...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/03/20 11:37 a.m.3 views

BIT-PARSE-2026-32742 Parse Server session creation endpoint allows overwriting server-generated session fields

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0 and 8.6.42, an authenticated user can overwrite server-generated session fields sessionToken, expiresAt, createdWith when creating a session object via POST /classes/Session. Thi...

4.3CVSS5.9AI score0.00306EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/18 9:33 p.m.9 views

CVE-2026-32742

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.17 and 8.6.42, an authenticated user can overwrite server-generated session fields sessionToken, expiresAt, createdWith when creating a session object via POST...

4.3CVSS5.9AI score0.00306EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder