Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/03/19 12:0 a.m.8 views

Admidio 安全漏洞

Admidio is a set of open-source member management systems developed by the Admidio team. This system supports features such as member lists, event management, message boards, photo albums, and downloads. Versions 5.0.0 to 5.0.6 of Admidio have security vulnerabilities. These vulnerabilities stem...

6.5CVSS5.8AI score0.00226EPSS
Exploits1References2
OSV
OSV
added 2025/12/30 1:49 a.m.3 views

GO-2025-4267 Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea

Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea...

5.3CVSS6.5AI score0.00251EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/26 2:14 a.m.23 views

CVE-2025-68940

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request...

3.1CVSS0.00251EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/26 12:0 a.m.3 views

CVE-2025-68940

In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull request...

5.3CVSS7.1AI score0.00251EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-5164

Malware in sbrugna...

8.8CVSS8.8AI score0.01204EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:36 p.m.8 views

CVE-2021-25778

In JetBrains TeamCity before 2020.2.1, permissions during user deletion were checked improperly...

5.3CVSS7AI score0.00758EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.4 views

PT-2025-23246 · Freescout · Freescout

Name of the Vulnerable Software and Affected Versions: FreeScout versions prior to 1.8.180 Description: The issue allows an authorized user with the administrator role or the privilege User::PERM EDIT USERS to create a user and specify the path to the user's avatar as ../.htaccess during creation...

7.5CVSS6.4AI score0.0027EPSS
Exploits1References9
NVD
NVD
added 2025/04/24 7:15 a.m.21 views

CVE-2025-41423

Mattermost versions 10.4.x = 10.4.2, 10.5.x = 10.5.0, 9.11.x = 9.11.10 fail to properly validate permissions for the API endpoint /plugins/playbooks/api/v0/signal/keywords/ignore-thread, allowing any user or attacker to delete posts containing actions created by the Playbooks bot, even without...

4.3CVSS0.0023EPSS
Exploits0References1
NVD
NVD
added 2022/05/26 6:15 p.m.37 views

CVE-2022-22676

An event handler validation issue in the XPC Services API was addressed by removing the service. This issue is fixed in macOS Monterey 12.2. An application may be able to delete files for which it does not have permission...

5.5CVSS0.00684EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/08/04 12:0 a.m.4 views

ownCloud 安全漏洞

Owncloud ownCloud is a personal cloud storage solution from the American company ownCloud Owncloud. A security vulnerability exists in ownCloud Server that stems from the ability to bypass permission checks for file deletion by using the shareinfo API. The vulnerability can be exploited by an...

5.3CVSS5.8AI score0.00909EPSS
Exploits0References4
RubySec
RubySec
added 2017/04/05 12:0 a.m.16 views

Safemode Gem for Ruby is vulnerable to bypassing safe mode limitations

Safemode, as used in Foreman, versions 1.3.2 and earlier are vulnerable to bypassing safe mode limitations via special Ruby syntax. This can lead to deletion of objects for which the user does not have delete permissions or possibly to privilege escalation...

9.8CVSS5.3AI score0.01627EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder