362 matches found
MINI-8RQG-VHVG-WQ2V
Bulletin has no description...
MINI-PF9M-W6HG-9M75
Bulletin has no description...
CGA-JJJX-R7M6-9WGP
Bulletin has no description...
MINI-GX44-PMRG-J57V
Bulletin has no description...
CVE-2026-54022 Open WebUI: Any authenticated user can read other users' private notes via Socket.IO
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the ydoc:document:join Socket.IO handler checks note ownership only when the documentid starts with note: colon. However, the YdocManager storage layer normalizes all document IDs b...
MINI-PVQV-W7RC-6V25
Bulletin has no description...
MINI-X2FW-P82Q-V99H
Bulletin has no description...
MINI-2RVP-J9JF-M7CM
Bulletin has no description...
MINI-JG53-6PQM-2VW8
Bulletin has no description...
MINI-689W-955V-2J3X
Bulletin has no description...
MINI-MWMR-7JXC-VRW8
Bulletin has no description...
MINI-7JPM-FQFW-HCRR
Bulletin has no description...
MINI-3HXV-MQ22-HFGX
Bulletin has no description...
MINI-4X6Q-HG5M-JV27
Bulletin has no description...
PT-2026-45852
Name of the Vulnerable Software and Affected Versions code-projects Student Admission System version 1.0 Description A SQL injection flaw exists in the /index.php file. This issue allows a remote attacker to manipulate the eid and did arguments to execute unauthorized database queries...
CVE-2026-45282 Nextcloud: Logged-in user bypasses share password and download restrictions on Text attachments via documentId leads to unauthorized file access
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...
CVE-2026-45282 Nextcloud: Logged-in user bypasses share password and download restrictions on Text attachments via documentId leads to unauthorized file access
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...
EUVD-2026-33707
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...
CVE-2026-45282
This CVE affects Nextcloud Server versions 32.0.0–32.0.8 and 33.0.0–33.0.2, where an authenticated attacker can access attachments of link shares using a valid share token and a known documentId, bypassing password protection or download restrictions. The vulnerability enables access to attachmen...
ASB-A-500171842
Bulletin has no description...