Lucene search
+L

145 matches found

nvd
nvd
added 2026/07/08 3:16 p.m.7 views

CVE-2026-10706

In Adalo’s no-code app builder, Versions 1 and 2 the attackers may extract full user records and correlate user behavior across multiple applications via dbId enumeration. The platform does not implement data minimization, privacy by design, or implement appropriate technical safeguards, allowing...

7.5CVSS0.00303EPSS
Exploits0References1
cve
cve
added 2026/07/08 2:6 p.m.8 views

CVE-2026-10706

CVE-2026-10706 affects Adalo’s no-code app builder (V1 and V2). A platform‑level flaw in the database API allows authenticated users to retrieve full user records from any Adalo application, via dbId enumeration, bypassing ownership checks and enabling cross‑application data exposure. The issue i...

7.5CVSS5.9AI score0.00303EPSS
Exploits0References1
cvelist
cvelist
added 2026/07/08 2:6 p.m.35 views

CVE-2026-10706 Exposure of Sensitive Information to an Unauthorized attacker

In Adalo’s no-code app builder, Versions 1 and 2 the attackers may extract full user records and correlate user behavior across multiple applications via dbId enumeration. The platform does not implement data minimization, privacy by design, or implement appropriate technical safeguards, allowing...

0.00303EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/07/08 12:0 a.m.5 views

PT-2026-56454

Name of the Vulnerable Software and Affected Versions Adalo versions 1 through 2 Description Attackers can extract complete user records and correlate user behavior across multiple applications through the enumeration of the dbId variable. This occurs because the platform lacks data minimization,...

7.5CVSS6AI score0.00303EPSS
Exploits0References5
packetstormnews
packetstormnews
added 2026/05/19 12:0 a.m.11 views

DASM: Domain-Aware Sharpness Minimization for Multi-Domain Voice Stream Steganalysis

The growing use of information hiding in network streaming media for covert communication poses a significant security threat, necessitating the development of robust detection technologies. However, existing steganalysis methods for network voice streams mostly rely on data distributions in...

5.8AI score
Exploits0
ics
ics
added 2026/05/12 7:0 a.m.34 views

Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

7.5CVSS5.9AI score0.00125EPSS
Exploits0References11
ics
ics
added 2026/04/09 6:0 a.m.8 views

Contemporary Controls BASC 20T

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to enumerate the functionality of each component associated with the PLC, reconfigure, rename, delete, perform file transfers, and make remote procedure calls. 2. RECOMMENDED PRACTICES CISA recommends users...

9.8CVSS6AI score0.00443EPSS
Exploits0References13
ics
ics
added 2026/03/24 6:0 a.m.16 views

Grassroots DICOM (GDCM)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to send a specially crafted file, and when parsed, could result in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.7CVSS5.7AI score0.00358EPSS
Exploits0References13
ics
ics
added 2026/03/10 7:0 a.m.6 views

Schneider Electric Modicon M241, M251, and M262

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.9CVSS5.9AI score0.00455EPSS
Exploits0References11
ics
ics
added 2026/03/10 7:0 a.m.6 views

Schneider Electric EcoStruxure Automation Expert

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

8.2CVSS6.2AI score0.00227EPSS
Exploits0References11
mssecure
mssecure
added 2026/02/03 5:0 p.m.8 views

Microsoft SDL: Evolving security practices for an AI-powered world

As AI reshapes the world, organizations encounter unprecedented risks, and security leaders take on new responsibilities. Microsoft’s Secure Development Lifecycle SDL is expanding to address AI-specific security concerns in addition to the traditional software security areas that it has...

5.9AI score
Exploits0
ics
ics
added 2026/01/20 7:0 a.m.7 views

Rockwell Automation Verve Asset Manager

RISK EVALUATION Successful exploitation of these vulnerabilities may allow an attacker to access sensitive information stored in variables within the ADI server. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities,...

5.7AI score
Exploits0References13
ics
ics
added 2025/12/18 7:0 a.m.10 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products

RISK EVALUATION Successful exploitation of this vulnerability could result in denial-of-service DoS, information tampering, and information disclosure. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...

8.2CVSS7.7AI score0.00492EPSS
Exploits0References13
packetstormnews
packetstormnews
added 2025/12/16 12:0 a.m.5 views

Cybercrime and Computer Forensics in Epoch of Artificial Intelligence in India

The integration of generative Artificial Intelligence into the digital ecosystem necessitates a critical re-evaluation of Indian criminal jurisprudence regarding computational forensics integrity. While algorithmic efficiency enhances evidence extraction, a research gap exists regarding the Digit...

6.9AI score
Exploits0
ics
ics
added 2025/12/11 7:0 a.m.9 views

AzeoTech DAQFactory (Update A)

RISK EVALUATION Successful exploitation of these vulnerabilities requires an attacker to upload a malicious .ctl file. This could lead to information disclosure or arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

9.8CVSS7.6AI score0.00324EPSS
Exploits0References13
impervablog
impervablog
added 2025/12/10 4:39 p.m.7 views

The Privacy Gap in API Security: Why Protecting APIs Shouldn’t Put Your Data at Risk

The more critical APIs become, the more sensitive data they carry identities, payment details, health records, customer preferences, tokens, keys, and more. And this is where organizations face a painful, often invisible problem: To protect APIs, many organizations end up exposing the very data...

6.8AI score
Exploits0
ics
ics
added 2025/12/04 7:0 a.m.6 views

Johnson Controls iSTAR

RISK EVALUATION Successful exploitation of this vulnerability could result in the product failing to re-establish communication once the certificate expires. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...

7.1CVSS6.8AI score0.00091EPSS
Exploits0References13
ics
ics
added 2025/11/25 7:0 a.m.6 views

Festo Compact Vision System, Control Block, Controller, and Operator Unit products

RISK EVALUATION Successful exploitation of these vulnerabilities could result in an attacker accessing devices without authentication or modifying configuration files. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these...

7AI score
Exploits0References13
ics
ics
added 2025/11/25 6:0 a.m.7 views

Opto 22 groov View

RISK EVALUATION Successful exploitation of this vulnerability could result in credential exposure, key exposure, and privilege escalation. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network...

7.6CVSS6.8AI score0.00241EPSS
Exploits0References11
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-29469

Malware in sbrugna...

7.5CVSS6.5AI score0.02944EPSS
Exploits0References10
Rows per page
Query Builder