10 matches found
CVE-2026-44730 OpenCTI: Privilege escalation via graphQL API abusable by organization admins, due to incorrect ACL on userEdit relationAdd
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to 6.9.7, an organization admin can escalate their privileges by adding a user from a different organization with higher privileges, to their own organization. This is due to incorrect ACL o...
EUVD-2017-9594
Malware in sbrugna...
EUVD-2012-1536
Malware in sbrugna...
EUVD-2023-58325
Malicious code in bioql PyPI...
EUVD-2022-30001
Malicious code in bioql PyPI...
CVE-2020-11889
An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of comusers allow the unauthorized deletion of usergroups...
Joomla 2.5.x < 3.9.17 Multiple Vulnerabilities (5807-joomla-3-9-17)
According to its self-reported version, the instance of Joomla! running on the remote web server is 2.5.x prior to 3.9.17. It is, therefore, affected by multiple vulnerabilities. - An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of comusers allow...
Joomla! 2.5.0 - 3.9.16 Multiple Vulnerabilities
Joomla! is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...
Debian DSA-2222-1 : tinyproxy - incorrect ACL processing
Christoph Martin discovered that incorrect ACL processing in TinyProxy, a lightweight, non-caching, optionally anonymizing HTTP proxy, could lead to unintended network access rights. The oldstable distribution lenny is not affected. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
DSA-2222-1 tinyproxy - incorrect ACL processing
Bulletin has no description...