Lucene search
+L

194 matches found

thn
thn
added 3 days ago8 views

Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365

An attacker running a live Microsoft 365 phishing operation left a Python web server listening on a public port with directory listing switched on. The command that did it: python3 -m http.server 8080, was still sitting in the readable .bashhistory. From that one lapse, French security firm Lexfo...

6.2AI score
Exploits0
osv
osv
added 6 days ago3 views

CVE-2026-55370 Logto: TOTP code can be replayed within the RFC 6238 validity window (one-time use violation)

Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's existing TOTP verification accepted a successfully used TOTP code again while the code remained inside the RFC 6238 acceptance window because the verifier used otplib's stateless check with window ...

6.4CVSS6.1AI score0.00199EPSS
Exploits0References6
ptsecurity
ptsecurity
added 6 days ago12 views

PT-2026-57282

Name of the Vulnerable Software and Affected Versions Logto versions prior to 1.41.0 Description The Account Center step-up check accepts any active verification record belonging to the current user where isVerified is set to true. An attacker with an existing Account API bearer token can create...

8.1CVSS6.1AI score0.00259EPSS
Exploits0References8
nvd
nvd
added 2026/07/06 8:16 p.m.7 views

CVE-2026-14536

Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows an attacker with valid user credentials to bypass the MFA Required policy and authenticate without completing multi-factor authentication. The problem occurs when DVLS encounters an...

8.8CVSS0.00231EPSS
Exploits0References1
cisa_kev
cisa_kev
added 2026/06/29 12:0 a.m.11 views

SimpleHelp Authentication Bypass Vulnerability

SimpleHelp contains an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted without verifying their cryptographic signature. In a vulnerable configuration, a remote, unauthenticated attacke...

10CVSS5.9AI score0.0116EPSS
In wildExploits1
euvd
euvd
added 2026/06/18 4:11 p.m.11 views

EUVD-2026-37907

Webmin accepts basic authentication without session cookies when an attacker provides the 'User-Agent: webmin' header, allowing bypass of additional MFA requirements. Fixed in 2.641...

6.9CVSS5.2AI score0.00308EPSS
Exploits0References4
osv
osv
added 2026/06/18 4:11 p.m.2 views

CVE-2026-56022 Webmin MFA bypass

Webmin accepts basic authentication without session cookies when an attacker provides the 'User-Agent: webmin' header, allowing bypass of additional MFA requirements. Fixed in 2.641...

6.9CVSS6AI score0.00308EPSS
Exploits0References6
euvd
euvd
added 2026/05/28 4:19 p.m.10 views

EUVD-2026-32942

Casdoor versions 2.362.0 and earlier contain a logic flaw in the social‑login binding flow that allows users to bypass configured MFA requirements. The binding‑rule code path in controllers/auth.go calls HandleLoggedIn directly without invoking checkMfaEnable. Any user authenticating via this pat...

5.9AI score0.00322EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/28 4:19 p.m.9 views

CVE-2026-9091

Casdoor versions 2.362.0 and earlier contain a logic flaw in the social‑login binding flow that allows users to bypass configured MFA requirements. The binding‑rule code path in controllers/auth.go calls HandleLoggedIn directly without invoking checkMfaEnable. Any user authenticating via this pat...

5.9AI score0.00322EPSS
Exploits0References2
thn
thn
added 2026/05/28 1:33 p.m.20 views

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a fresh box full of sketchy loaders, fake installers, recycled social-engineering bait, and enough exposed infrastructure to make you wonder if prod is just a public beta now - meanwhile...

9.8CVSS6.5AI score0.01456EPSS
Exploits1
vulnrichment
vulnrichment
added 2026/05/26 4:44 p.m.9 views

CVE-2026-48897 Joomla! Core - [20260512] - MFA Authentication Bypass

Insufficient state checks lead to a vector that allows to bypass 2FA checks...

8.2CVSS5.8AI score0.00211EPSS
Exploits0References1
nvd
nvd
added 2026/05/22 4:16 p.m.11 views

CVE-2026-9047

Improper handling of factor key state in the multi-factor authentication management feature in Devolutions Server allows an attacker with knowledge of a user's password to bypass the user's multi-factor authentication after the user reconfigures their factors. This issue affects : Devolutions...

7.6CVSS0.00215EPSS
Exploits0References1
vulncheck_kev
vulncheck_kev
added 2026/05/19 12:0 a.m.21 views

VulnCheck KEV: CVE-2024-12802

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN User Principal Name and SAM Security Account Manager account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and...

9.1CVSS6.6AI score0.00471EPSS
In wildExploits0References3
osv
osv
added 2026/04/06 2:49 p.m.2 views

BIT-PARSE-2026-34224 Parse Server: MFA single-use token bypass via concurrent authData login requests

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.64 and 9.7.0, an attacker who possesses a valid authentication provider token and a single MFA recovery code or SMS one-time password can create multiple authenticated...

4.4CVSS5.9AI score0.00311EPSS
Exploits0References6
cve
cve
added 2026/04/01 2:50 p.m.19 views

CVE-2026-4924

CVE-2026-4924 describes an improper authentication in the 2FA feature of Devolutions Server prior to 2026.1.12 (also before 2026.1.11 per advisories), where a remote actor with valid credentials can bypass MFA by reusing a partially authenticated session token, enabling unauthorized access to a v...

8.2CVSS5.9AI score0.00326EPSS
Exploits0References1Affected Software1
cve
cve
added 2026/03/31 2:25 p.m.19 views

CVE-2026-34224

CVE-2026-34224 affects Parse Server (Node.js backend). A flaw in the authData login flow lets an attacker with a valid provider token and a single MFA recovery code or SMS OTP create multiple authenticated sessions by issuing concurrent login requests, defeating the single-use MFA guarantee and p...

4.4CVSS5.8AI score0.00311EPSS
Exploits0References5Affected Software1
osv
osv
added 2026/03/18 12:16 a.m.9 views

UBUNTU-CVE-2026-25937

GLPI is a free Asset and IT management software package. Starting in version 11.0.0 and prior to version 11.0.6, a malicious actor with knowledge of a user's credentials can bypass MFA and steal their account. Version 11.0.6 fixes the issue...

6.5CVSS5.8AI score0.00292EPSS
Exploits0References2
cve
cve
added 2026/03/17 11:16 p.m.19 views

CVE-2026-25937

GLPI (Asset and IT management software) is affected by CVE-2026-25937 where an attacker with knowledge of a user’s credentials can bypass MFA. The issue affects versions 11.0.0 through 11.0.5; version 11.0.6 contains the fix. The CVSS base metrics indicate a Network attack vector, low attack comp...

6.5CVSS5.8AI score0.00292EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2026/03/17 8:34 a.m.6 views

CVE-2026-4208

The extension fails to properly reset the generated MFA code after successful authentication. This leads to a possible MFA bypass for future login attempts by providing an empty string as MFA code to the extensions MFA provider...

7.7CVSS5.8AI score0.00256EPSS
Exploits0References2Affected Software1
osv
osv
added 2026/03/17 8:34 a.m.3 views

CVE-2026-4208 Authentication Bypass in extension "E-Mail MFA Provider" (mfa_email)

The extension fails to properly reset the generated MFA code after successful authentication. This leads to a possible MFA bypass for future login attempts by providing an empty string as MFA code to the extensions MFA provider...

7.7CVSS6AI score0.00256EPSS
Exploits0References5
Rows per page
Query Builder