Lucene search
K

4 matches found

EUVD
EUVD
added 2026/03/27 12:32 p.m.4 views

EUVD-2026-16593

A user with permission "update world" in any Venueless world is able to exfiltrate chat messages from direct messages or channels in other worlds on the same server due to a bug in the reporting feature. The exploitability is limited by the fact that the attacker needs to know the internal channe...

7.3CVSS5.9AI score0.00247EPSS
Exploits0References1
CVE
CVE
added 2026/03/27 12:32 p.m.10 views

CVE-2026-4982

CVE-2026-4982 affects Venueless where a user with the privilege “update world” can exfiltrate chat messages from direct messages or channels in other worlds on the same server due to a bug in the reporting feature. The vulnerability arises from the reporting component allowing cross-world access ...

7.3CVSS5.9AI score0.00247EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/27 12:32 p.m.1 views

CVE-2026-4982

A user with permission "update world" in any Venueless world is able to exfiltrate chat messages from direct messages or channels in other worlds on the same server due to a bug in the reporting feature. The exploitability is limited by the fact that the attacker needs to know the internal channe...

7.3CVSS5.9AI score0.00247EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.4 views

PT-2026-28703

Name of the Vulnerable Software and Affected Versions Venueless affected versions not specified Description A user possessing the "update world" permission within any Venueless world can potentially extract chat messages from direct messages or channels in other worlds on the same server. This is...

7.3CVSS5.9AI score0.00247EPSS
Exploits0References3
Rows per page
Query Builder