CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/30 11:0 p.m.•1 views

EUVD-2026-26457

6.5CVSS5.1AI score0.00018EPSS

ATTACKERKB•added 2026/04/30 11:0 p.m.•0 views

CVE-2026-7510

6.5CVSS6.1AI score0.00018EPSS

Exploits0References7Affected Software1

Vulnrichment•added 2026/04/30 11:0 p.m.•0 views

CVE-2026-7510 OWAP DefectDojo Benchmark/Engagement/Product/Survey authorization

6.5CVSS6.2AI score0.00018EPSS

CVE•added 2026/04/30 11:0 p.m.•2 views

CVE-2026-7510

The CVE-2026-7510 entry concerns OWAP DefectDojo up to 2.55.4, with an authorization bypass affecting the Benchmark/Engagement/Product/Survey functionality. The issue is reachable remotely and is supported by a public disclosure; upgrading to DefectDojo 2.56.0 addresses the vulnerability (patch e...

6.5CVSS6.1AI score0.00018EPSS

Cvelist•added 2026/04/30 11:0 p.m.•26 views

CVE-2026-7510 OWAP DefectDojo Benchmark/Engagement/Product/Survey authorization

6.5CVSS0.00018EPSS

CNNVD•added 2026/04/30 12:0 a.m.•3 views

DefectDojo 授权问题漏洞

DefectDojo is an application security and vulnerability management tool developed by DefectDojo. Versions of DefectDojo 2.55.4 and earlier contained a vulnerability related to authorization. This vulnerability stemmed from unknown functions within the Benchmark/Engagement/Product/Survey component...

6.5CVSS6.6AI score0.00018EPSS

Exploits0References1

Positive Technologies•added 2026/04/30 12:0 a.m.•2 views

PT-2026-36213

Name of the Vulnerable Software and Affected Versions OWAP DefectDojo versions prior to 2.56.0 Description An issue exists in the Benchmark, Engagement, Product, and Survey components where a manipulation can lead to a remote authorization bypass, allowing an attacker to circumvent access control...

6.5CVSS6.6AI score0.00018EPSS

Exploits0References10

RedhatCVE•added 2026/03/10 2:8 p.m.•1 views

CVE-2026-3816

A security vulnerability has been detected in OWASP DefectDojo up to 2.55.4. This vulnerability affects the function inputzip.read of the file parser.py of the component SonarQubeParser/MSDefenderParser. The manipulation leads to denial of service. The attack can be initiated remotely. The exploi...

6.5CVSS5.3AI score0.0003EPSS

Exploits1References1

EUVD•added 2026/03/09 12:31 p.m.•2 views

EUVD-2026-10324

EUVD•added 2026/03/09 12:31 p.m.•1 views

EUVD-2026-10325

OSV•added 2026/03/09 11:16 a.m.•0 views

CVE-2026-3816

6.5CVSS5.2AI score

Exploits0References8

NVD•added 2026/03/09 11:16 a.m.•3 views

CVE-2026-3816

6.5CVSS0.0003EPSS

Exploits1References8

Cvelist•added 2026/03/09 11:2 a.m.•30 views

CVE-2026-3816 OWASP DefectDojo SonarQubeParser/MSDefenderParser parser.py input_zip.read denial of service

5.3CVSS0.0003EPSS

Exploits1References8

Vulnrichment•added 2026/03/09 11:2 a.m.•2 views

CVE-2026-3816 OWASP DefectDojo SonarQubeParser/MSDefenderParser parser.py input_zip.read denial of service

CVE•added 2026/03/09 11:2 a.m.•12 views

Exploits1References8

CVE-2026-3816

The CVE-2026-3816 affects OWASP DefectDojo

6.5CVSS5.3AI score0.0003EPSS

Exploits1References8Affected Software1

ATTACKERKB•added 2026/03/09 11:2 a.m.•2 views

CVE-2026-3816

Exploits1References8Affected Software1

CNNVD•added 2026/03/09 12:0 a.m.•2 views

OWASP DefectDojo 安全漏洞

OWASP DefectDojo is a powerful vulnerability management platform and DevSecOps platform developed by the OWASP Foundation in the United States. OWASP DefectDojo versions 2.55.4 and earlier contained a security vulnerability. This vulnerability stemmed from an error in the inputzip.read function...

6.5CVSS5.8AI score0.0003EPSS

Positive Technologies•added 2026/03/09 12:0 a.m.•2 views

PT-2026-24055

A security vulnerability has been detected in OWASP DefectDojo up to 2.55.4. This vulnerability affects the function input zip.read of the file parser.py of the component SonarQubeParser/MSDefenderParser. The manipulation leads to denial of service. The attack can be initiated remotely. The explo...