Lucene search
K

92 matches found

CVE
CVE
added 2026/06/15 8:59 p.m.29 views

CVE-2026-48157

Slim PHP framework (versions 4.4.0–4.15) is affected by an HTML/JavaScript injection in error pages when HttpException::setTitle() and/or setDescription() are fed with untrusted data. The issue can occur in HTML error pages generated by Slim and is present even with displayErrorDetails = false; v...

6.1CVSS5.5AI score0.00167EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/22 4:0 p.m.12 views

EUVD-2026-31467

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the getResultLogs API endpoint authorizes the caller against the provided typebotId but fetches logs solely by resultId without verifying that the result belongs to the authorized typebot, leading to IDOR. An authenticated attacker...

6.5CVSS5.9AI score0.00316EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/05/21 11:47 a.m.10 views

WordPress Avada (Fusion) Builder plugin <= 3.15.2 - Unauthenticated Remote Code Execution vulnerability

Unauthenticated Remote Code Execution vulnerability discovered by ? in WordPress Plugin Fusion Builder versions = 3.15.2...

9.8CVSS5.8AI score0.02163EPSS
Exploits4References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/14 8:8 p.m.8 views

CVE-2026-44647

OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0.2, there is behavior that breaks the expected boundary between repository-controlled LFS metadata and server-local filesystem paths. A repository object can steer raw blob reads to arbitrary local files that the server account...

7.1CVSS5.9AI score0.00319EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/23 8:47 a.m.3 views

BIT-OAUTH2-PROXY-2026-40574 OAuth2 Proxy has an Authorization Bypass in Email Domain Validation via Malformed Multi-@ Email Claims

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Prior to 7.15.2, an authorization bypass exists in OAuth2 Proxy as part of the emaildomain enforcement option. An attacker may be able to authenticate with an email claim such as [email protected]@company.com and...

6.8CVSS5.7AI score0.00209EPSS
Exploits0References2
NVD
NVD
added 2026/04/22 12:16 a.m.9 views

CVE-2026-40575

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 may trust a client-supplied X-Forwarded-Uri header when --reverse-proxy is enabled and --skip-auth-regex or --skip-auth-route is configured. An attacker can spoof this header so OAut...

9.1CVSS0.00477EPSS
Exploits0References4
Snyk
Snyk
added 2026/04/22 12:8 a.m.6 views

User Impersonation

Overview Affected versions of this package are vulnerable to User Impersonation via the X-Forwarded-Uri header when the --reverse-proxy setting is enabled and either --skip-auth-regex or --skip-auth-route is configured. An attacker can gain unauthorized access to protected routes by spoofing the...

9.1CVSS5.4AI score0.00477EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.9 views

OAuth2 Proxy 安全漏洞

OAuth2 Proxy is a product offered by OAuth2 Proxy organizations that can provide a reverse proxy for authentication with Google, Github, or other providers. Versions of OAuth2 Proxy prior to 7.15.2 had security vulnerabilities. These vulnerabilities stemmed from the emaildomain enforcement option...

6.8CVSS5.8AI score0.00209EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/14 10:31 p.m.8 views

OAuth2 Proxy's session cookies are not cleared when rendering sign-in page

Impact A regression introduced in v7.11.0 is preventing OAuth2 Proxy from clearing the session cookie when rendering the sign-in page. This only impacts deployments that rely on the sign-in page as part of their logout flow. In those setups, a user may be shown the sign-in page while the existing...

3.5CVSS5.8AI score0.00183EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/14 10:14 p.m.18 views

CVE-2026-34457

CVE-2026-34457 affects OAuth2 Proxy prior to 7.15.2. In deployments using an auth_request-style integration (e.g., nginx auth_request) with either --ping-user-agent or --gcp-healthchecks enabled, any request bearing the configured health-check User-Agent is treated as authenticated, bypassing log...

9.1CVSS5.8AI score0.00475EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/14 10:10 p.m.2 views

CVE-2026-34454 OAuth2 Proxy: Session cookie not cleared when rendering sign-in page

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 prevents OAuth2 Proxy from clearing the session cookie when rendering the sign-in page. In deployments that rely on the sign-in page as part of their logout flow, a user may be...

3.5CVSS5.8AI score0.00183EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/10 10:10 p.m.9 views

mathjs Allows Improperly Controlled Modification of Dynamically-Determined Object Attributes

Impact This security vulnerability allowed executing arbitrary JavaScript via the expression parser of mathjs. You can be affected when you have an application where users can evaluate arbitrary expressions using the mathjs expression parser. Patches The issue was introduced in mathjs v13.1.0, an...

8.8CVSS5.9AI score0.00577EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/01/16 12:25 a.m.6 views

SUSE CVE-2026-21889

Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served directly by the HTTP server without proper access control. This could allow an unauthenticated user to access screenshots after guessing their filename. This vulnerability is fixed in 5.15.2...

7.5CVSS6.9AI score0.00323EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002369)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002369 advisory. The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the userctlcount...

4.9CVSS6.7AI score0.00494EPSS
Exploits0References18
Cvelist
Cvelist
added 2026/01/14 4:28 p.m.41 views

CVE-2026-21889 Weblate leaks information via screenshots

Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served directly by the HTTP server without proper access control. This could allow an unauthenticated user to access screenshots after guessing their filename. This vulnerability is fixed in 5.15.2...

2.3CVSS0.00323EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/02 6:30 p.m.1 views

EUVD-2026-0152

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/24 12:32 p.m.5 views

CVE-2025-68548

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Stored XSS.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.2...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References1
CVE
CVE
added 2025/12/23 11:50 a.m.9 views

CVE-2025-68548

Mode C: The connected Wordfence entry documents an authenticated (Contributor+) Local File Inclusion vulnerability in Responsive Posts Carousel Pro (WordPress plugin) up to version 15.2, CVE-2025-68996, with Patch Status Patched. Updated versions from 15.2+ remediate the issue; CVSS 7.5 (High) in...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.7 views

PT-2025-52748

Name of the Vulnerable Software and Affected Versions Responsive Posts Carousel Pro versions through 15.2 Description An issue exists in WebCodingPlace Responsive Posts Carousel Pro that allows for Stored Cross-site Scripting XSS. This occurs due to improper neutralization of input during web pag...

6.5CVSS6.1AI score0.00133EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/27 9:30 a.m.7 views

EUVD-2025-199808

The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 11.15.2. This is due to the plugin validating file extensions but not halting execution when validation fails in the...

8.8CVSS6.9AI score0.0052EPSS
Exploits0References6
Rows per page
Query Builder