CVE-2026-22246

Mastodon vulnerability (CVE-2026-22246): In 4.3, the severed-relationships notification feature allowed inspecting lost relationships, but the code that downloads lists of severed relationships did not verify the list owner. As a result, any registered local user could enumerate and access the se...

EUVD-2023-55111

Malicious code in bioql PyPI...

CVE-2023-50306

IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337...

CVE-2023-50306

CVE-2023-50306: IBM Common Licensing username enumeration (local) Affected product: IBM Engineering Requirements Management DOORS family (DOORS/DOORS Web Access) on versions 9.7.2.7 and related DOORS Web Access/DWA, with root cause described as an observable response discrepancy that lets a local...

CVE-2015-3238

The unixrunhelperbinary function in the pamunix module in Linux-PAM aka pam before 1.2.1, when unable to directly access passwords, allows local users to enumerate usernames or cause a denial of service hang via a large password...