CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Github Security Blog•added 2026/05/21 8:35 p.m.•6 views

NocoDB: Shared-base link access can invite arbitrary users as persistent base members

5.9AI score

Exploits0References2Affected Software1

EUVD•added 2026/05/13 9:32 p.m.•5 views

EUVD-2026-30134

A cross-site scripting XSS vulnerability exists in Alinto SOGo, version 5.12.7. A maliciously crafted ICS calendar invitation files allows arbitrary JavaScript execution within the authenticated SOGo webmail session. The issue occurs because SVG content embedded in the description field of an ICS...

6.1CVSS6AI score0.00049EPSS

Exploits0References4

NVD•added 2026/05/08 8:16 p.m.•9 views

CVE-2026-42185

People is an application to handle users and teams, and distribute permissions across La Suite. Prior to version 1.25.0, a user holding the Administrator role on a mail domain could send a crafted invitation request to promote any existing user including users with no current domain access to the...

5.5CVSS0.00033EPSS

Vulnrichment•added 2026/05/08 7:23 p.m.•8 views

CVE-2026-42185 People: Privilege Escalation via Missing Role Ceiling in Mail Domain Invitation

5.5CVSS5.8AI score0.00033EPSS

Cvelist•added 2026/05/08 7:23 p.m.•28 views

CVE-2026-42185 People: Privilege Escalation via Missing Role Ceiling in Mail Domain Invitation

5.5CVSS0.00033EPSS

CVE•added 2026/05/07 6:3 p.m.•10 views

CVE-2026-41902

CVE-2026-41902 affects FreeScout (Laravel-based help desk). Before v1.8.217, the endpoint /user-setup/{hash} accepts a 60-character invite_hash to set a new user’s password and does not expire the hash, leaving it valid until used. If the invite link leaks (e.g., forwarded emails, logs, or referr...

9.1CVSS5.8AI score0.00039EPSS

CNNVD•added 2026/05/07 12:0 a.m.•3 views

FreeScout 代码问题漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.217 contained code vulnerabilities. This vulnerability stemmed from the/user-setup/hash endpoint, which did not expire the...

9.1CVSS5.9AI score0.00039EPSS

RedhatCVE•added 2026/04/29 2:49 p.m.•0 views

CVE-2026-7145

A weakness has been identified in mettle sendportal up to 3.0.1. Affected is the function destroy of the file app/Http/Controllers/Workspaces/WorkspaceInvitationsController.php of the component Invitation Handler. This manipulation of the argument invitation causes authorization bypass. The attac...

5.5CVSS5.4AI score0.00047EPSS

EUVD•added 2026/04/27 5:45 p.m.•2 views

EUVD-2026-25896

5.5CVSS5.1AI score0.00047EPSS

Exploits0References5

Cvelist•added 2026/04/27 5:45 p.m.•21 views

CVE-2026-7145 mettle sendportal Invitation WorkspaceInvitationsController.php destroy authorization

5.5CVSS0.00047EPSS

Exploits0References5

ATTACKERKB•added 2026/04/27 5:45 p.m.•1 views

CVE-2026-7145

5.5CVSS5.1AI score0.00047EPSS

Exploits0References6Affected Software1

CNNVD•added 2026/04/27 12:0 a.m.•5 views

sendportal 授权问题漏洞

SendPortal is a self-hosted email marketing management tool developed by Mattel. Versions of SendPortal 3.0.1 and earlier had an authorization vulnerability. This vulnerability stemmed from improper handling of the parameter invitation in the destroy function of the Invitation Handler component...

5.5CVSS6.1AI score0.00047EPSS

OSV•added 2026/04/16 11:36 p.m.•1 views

BIT-AUTHENTIK-2025-64708 authentik invitation expiry is delayed by at least 5 minutes

authentik is an open-source Identity Provider. Prior to versions 2025.8.5 and 2025.10.2, in previous authentik versions, invitations were considered valid regardless if they are expired or not, thus relying on background tasks to clean up expired ones. In a normal scenario this can take up to 5...

5.8CVSS7.2AI score0.00047EPSS

OSV•added 2026/04/16 11:35 p.m.•2 views

BIT-AUTHENTIK-2022-23555 authentik vulnerable to Improper Authentication via invitation URL token reuse

authentik is an open-source Identity Provider focused on flexibility and versatility. Versions prior to 2022.11.4 and 2022.10.4 are vulnerable to Improper Authentication. Token reuse in invitation URLs leads to access control bypass via the use of a different enrollment flow than in the one...

9.4CVSS7AI score0.00172EPSS

Exploits1References2

Github Security Blog•added 2026/04/06 5:59 p.m.•4 views

Authorizer: Password reset token theft and full auth token redirect via unvalidated redirect_uri

Hi, I found that 6 endpoints in Authorizer accept a user-controlled redirecturi and append sensitive tokens to it without validating the URL against AllowedOrigins. The OAuth /app handler validates redirecturi at httphandlers/app.go:46, but the GraphQL mutations and verifyemail handler skip...

6AI score

Exploits0References5Affected Software1

CNNVD•added 2026/04/06 12:0 a.m.•2 views

homarr 安全漏洞

Homarr is a customizable browser homepage developed by Thomas Camlong, used to interact with the Docker containers of the main server. Versions of Homarr prior to 1.57.0 contained security vulnerabilities. These vulnerabilities stemmed from race conditions in the user registration endpoint, which...

4.2CVSS5.8AI score0.00034EPSS

CNNVD•added 2026/04/03 12:0 a.m.•2 views

Discourse 信息泄露漏洞

Discourse is an open-source community discussion platform developed by Discourse. This platform includes features such as communities, email communication, and chat rooms. Versions of Discourse prior to 2026.1.3, 2026.2.2, and 2026.3.0 contained a vulnerability related to information leakage. Thi...

6.9CVSS5.8AI score0.00054EPSS

RedhatCVE•added 2026/04/02 5:4 a.m.•1 views

CVE-2026-4947

Addressed a potential insecure direct object reference IDOR vulnerability in the signing invitation acceptance process. Under certain conditions, this issue could have allowed an attacker to access or modify unauthorized resources by manipulating user-supplied object identifiers, potentially...

7.1CVSS5.9AI score0.00038EPSS

EUVD•added 2026/04/01 3:31 a.m.•0 views

EUVD-2026-17767

7.1CVSS5.9AI score0.00038EPSS