Lucene search
+L

5 matches found

Snyk
Snyk
added 2026/03/30 4:41 p.m.6 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the certificate issuance/auto-certification flows in api/certificate/issue.go and api/sites/autocert.go, and JSON field encryption migration in the internal/migrate. An attacker c...

9.9CVSS5.9AI score0.0028EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-8167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A CSRF vulnerability exists in rails = 6.0.3 rails-ujs module that could allow attackers to send CSRF tokens to wrong domains. CVE-2020-8167 Note that Nessus...

6.5CVSS6.7AI score0.01485EPSS
Exploits1References2
OSV
OSV
added 2020/06/19 6:15 p.m.5 views

UBUNTU-CVE-2020-8167

A CSRF vulnerability exists in rails = 6.0.3 rails-ujs module that could allow attackers to send CSRF tokens to wrong domains...

6.5CVSS6.8AI score0.01485EPSS
Exploits1References4
PyPA
PyPA
added 2014/08/25 2:55 p.m.7 views

PYSEC-2014-109

OpenStack Identity Keystone 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access via a domain-scoped token for that domain...

4.9CVSS6.8AI score0.01488EPSS
Exploits0References5Affected Software1
Metasploit
Metasploit
added 2011/10/27 12:54 a.m.54 views

Windows Gather Enumerate Domain Tokens

This module enumerates domain account tokens, processes running under domain accounts, and domain users in the local Administrators, Users and Backup Operator groups. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

0.4AI score
Exploits0
Rows per page
Query Builder