Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.7 views

CVE-2026-26367

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the deleteUserAccount JSON-RPC method that permits any authenticated low-privileged user UGUSER to delete arbitrary user accounts, except for the built-in admin account. The application does not enforce...

8.1CVSS5.8AI score0.00373EPSS
Exploits2References1
OSV
OSV
added 2026/02/15 4:15 p.m.8 views

CVE-2026-26367

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the deleteUserAccount JSON-RPC method that permits any authenticated low-privileged user UGUSER to delete arbitrary user accounts, except for the built-in admin account. The application does not enforce...

8.1CVSS6AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/15 3:29 p.m.4 views

CVE-2026-26367

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the deleteUserAccount JSON-RPC method that permits any authenticated low-privileged user UGUSER to delete arbitrary user accounts, except for the built-in admin account. The application does not enforce...

7.1CVSS5.8AI score0.00373EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/02/15 12:0 a.m.10 views

PT-2026-8251

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the deleteUserAccount JSON-RPC method that permits any authenticated low-privileged user UG USER to delete arbitrary user accounts, except for the built-in admin account. The application does not enforce...

7.1CVSS5.8AI score0.00373EPSS
Exploits2References3
CNNVD
CNNVD
added 2024/12/11 12:0 a.m.4 views

GLPI 访问控制错误漏洞

GLPI is an open source IT and asset management software from GLPI Open Source. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

8.1CVSS4.5AI score0.00425EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/07 12:0 a.m.5 views

Project Worlds Online Examination System 跨站请求伪造漏洞

Project Worlds Online Examination System is an online examination system Project Worlds Online Examination System version 1.0 suffers from a cross-site request forgery vulnerability that originates from an attacker being able to craft a malicious link that, when clicked by an administrator user,...

6.5CVSS6.3AI score0.00382EPSS
Exploits1References3
Rows per page
Query Builder