Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.4 views

CVE-2026-32638

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS5.8AI score0.00375EPSS
Exploits1References1
CNVD
CNVD
added 2026/03/20 12:0 a.m.5 views

StudioCMS Information Disclosure Vulnerability

StudioCMS is StudioCMS open source a content management system . StudioCMS suffers from an information disclosure vulnerability that stems from the use of an attacker-controlled rank query parameter in the REST API getUsers endpoint, which can be exploited by an attacker to cause an administrator...

2.7CVSS5.3AI score0.00375EPSS
Exploits1
NVD
NVD
added 2026/03/18 9:16 p.m.9 views

CVE-2026-32638

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS0.00375EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/18 8:41 p.m.3 views

CVE-2026-32638

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS5.8AI score0.00375EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/03/18 8:41 p.m.18 views

CVE-2026-32638 StudioCMS REST getUsers Exposes Owner Account Records to Admin Tokens

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS0.00375EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/18 8:41 p.m.7 views

CVE-2026-32638 StudioCMS REST getUsers Exposes Owner Account Records to Admin Tokens

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS5.8AI score0.00375EPSS
Exploits1References3
CVE
CVE
added 2026/03/18 8:41 p.m.21 views

CVE-2026-32638

CVE-2026-32638 affects StudioCMS before 0.4.4. The REST API endpoint getUsers can be invoked by an admin token with rank=owner to enumerate owner accounts (id, username, display name, email), bypassing the intended boundary even though getUser blocks admins. Root cause: using an attacker-controll...

2.7CVSS5.8AI score0.00375EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/03/18 8:41 p.m.5 views

CVE-2026-32638 StudioCMS REST getUsers Exposes Owner Account Records to Admin Tokens

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.4.4, the REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token...

2.7CVSS5.8AI score0.00375EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.7 views

StudioCMS 安全漏洞

StudioCMS is StudioCMS open source a content management system . StudioCMS suffers from an information disclosure vulnerability that stems from the use of an attacker-controlled rank query parameter in the REST API getUsers endpoint, which can be exploited by an attacker to cause an administrator...

2.7CVSS5.7AI score0.00375EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/03/16 4:37 p.m.7 views

StudioCMS REST getUsers Exposes Owner Account Records to Admin Tokens

Summary The REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token can request rank=owner and receive owner account records, including IDs, usernames, display...

2.7CVSS5.9AI score0.00375EPSS
Exploits1References5Affected Software1
Snyk
Snyk
added 2026/03/16 4:37 p.m.6 views

Authorization Bypass Through User-Controlled Key

Overview @withstudiocms/api-spec is an API Specification for StudioCMS Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key in the getUsers process. An attacker can access sensitive owner account information, such as IDs, usernames, display names, a...

5.1CVSS5.8AI score0.00375EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/16 4:37 p.m.12 views

Authorization Bypass Through User-Controlled Key

Overview effectify is an Utility library that bridges Effect-ts with various utilities and projects, such as Astro! Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key in the getUsers process. An attacker can access sensitive owner account...

5.1CVSS5.8AI score0.00375EPSS
Exploits1References2
OSV
OSV
added 2026/03/16 4:37 p.m.3 views

GHSA-XVF4-CH4Q-2M24 StudioCMS REST getUsers Exposes Owner Account Records to Admin Tokens

Summary The REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token can request rank=owner and receive owner account records, including IDs, usernames, display...

2.7CVSS5.9AI score0.00375EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.11 views

PT-2026-25850

Summary The REST API getUsers endpoint in StudioCMS uses the attacker-controlled rank query parameter to decide whether owner accounts should be filtered from the result set. As a result, an admin token can request rank=owner and receive owner account records, including IDs, usernames, display...

2.7CVSS5.9AI score0.00375EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/02/26 10:35 p.m.7 views

CVE-2026-3200

A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkName/register/login/getUser/getUsers of the file /server/controller/user.js. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might...

7.5CVSS5.3AI score0.00321EPSS
Exploits0References1
NVD
NVD
added 2026/02/25 9:16 p.m.10 views

CVE-2026-3200

A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkName/register/login/getUser/getUsers of the file /server/controller/user.js. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might...

7.5CVSS0.00321EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/02/25 8:2 p.m.29 views

CVE-2026-3200 z-9527 admin user.js getUsers sql injection

A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkName/register/login/getUser/getUsers of the file /server/controller/user.js. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might...

7.5CVSS0.00321EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2026/02/25 8:2 p.m.4 views

CVE-2026-3200 z-9527 admin user.js getUsers sql injection

A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkName/register/login/getUser/getUsers of the file /server/controller/user.js. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might...

7.5CVSS5.8AI score0.00321EPSS
Exploits0References9
CVE
CVE
added 2026/02/25 8:2 p.m.17 views

CVE-2026-3200

CVE-2026-3200 affects the z-9527 admin 1.0/2.0 product. The vulnerability is in the server-side code, specifically the functions checkName, register, login, getUser, and getUsers in /server/controller/user.js, where improper handling leads to SQL injection. The issue can be triggered remotely and...

7.5CVSS7.3AI score0.00321EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

admin SQL注入漏洞

Admin is a chatroom software developed by Z-9527 as an individual developer. Versions 1.0 and 2.0 of Admin have SQL injection vulnerabilities. These vulnerabilities stem from incorrect operations on the functions checkName/register/login/getUser/getUsers in the file/server/controller/user.js, whi...

7.5CVSS7.2AI score0.00321EPSS
Exploits0References9
Rows per page
Query Builder