Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Veracode
Veracodeadded 2025/12/04 7:4 a.m.5 views

Unauthorized Account Creation

melis-core is vulnerable to Unauthorized Account Creation. The vulnerability is due to missing authentication on the /melis/MelisCore/ToolUser/addNewUser endpoint, where an unauthenticated attacker can directly invoke this function to create a new administrator account and gain full control of th...

9.3CVSS7.3AI score0.00195EPSS
Exploits3References4Affected Software1
Github Security Blog
Github Security Blogadded 2025/10/08 12:30 p.m.4 views

Melis Platform CMS Unauthenticated Admin Account Creation

Vulnerability in the melis-core module of Melis Technology's Melis Platform, which, if exploited, allows an unauthenticated attacker to create an administrator account via a request to '/melis/MelisCore/ToolUser/addNewUser'...

9.3CVSS7AI score0.00195EPSS
Exploits3References5Affected Software1
OSV
OSVadded 2025/10/08 12:30 p.m.2 views

GHSA-P3VC-G9F9-MGW4 Melis Platform CMS Unauthenticated Admin Account Creation

Vulnerability in the melis-core module of Melis Technology's Melis Platform, which, if exploited, allows an unauthenticated attacker to create an administrator account via a request to '/melis/MelisCore/ToolUser/addNewUser'...

9.3CVSS7AI score0.00195EPSS
Exploits3References5
GithubExploit
GithubExploitadded 2025/10/08 11:52 a.m.159 views

Exploit for CVE-2025-10353

CVE-2025-10352 - Admin Account Creation PoC 🛠️ Exploit for C...

9.3CVSS7.4AI score0.01277EPSS
Exploits6
Snyk
Snykadded 2025/10/08 11:42 a.m.1 views

Missing Authorization

Overview melisplatform/melis-core is a Melis Platform Core module Affected versions of this package are vulnerable to Missing Authorization via the /melis/MelisCore/ToolUser/addNewUser endpoint. An attacker can gain unauthorized administrative access by sending a crafted request to this endpoint...

9.3CVSS7AI score0.00195EPSS
Exploits3References2
NVD
NVDadded 2025/10/08 11:15 a.m.1 views

CVE-2025-10352

Vulnerability in the melis-core module of Melis Technology's Melis Platform, which, if exploited, allows an unauthenticated attacker to create an administrator account via a request to '/melis/MelisCore/ToolUser/addNewUser'...

9.3CVSS0.00195EPSS
Exploits3References2
CNNVD
CNNVDadded 2025/10/08 12:0 a.m.1 views

Melis Platform 安全漏洞

Melis Platform is an open source cross-framework digital platform from Melis Platform Open Source. A security vulnerability exists in Melis Platform, which originates in the melis-core module and allows an unauthenticated attacker to create an administrator account by requesting...

9.3CVSS6.6AI score0.00195EPSS
Exploits3References1
Positive Technologies
Positive Technologiesadded 2025/10/08 12:0 a.m.1 views

PT-2025-41245

Name of the Vulnerable Software and Affected Versions Melis Platform affected versions not specified Description A flaw exists in the melis-core module that allows an unauthenticated attacker to create an administrator account. This is achieved by sending a request to the...

9.3CVSS6.5AI score0.00195EPSS
Exploits3References14
Rows per page
Query Builder