Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
•added 2026/06/24 12:0 a.m.•20 views

PT-2026-52093

🚨 CVE-2026-45688 Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11, Rocket.Chat's CAS login handler forwards the client-supplied options.cas.credentialToken value straight into a MongoDB findOn...

9.1CVSS5.8AI score0.00289EPSS
Exploits0References4
Vulnrichment
Vulnrichment
•added 2026/03/18 10:0 p.m.•3 views

CVE-2026-32730 ApostropheCMS MFA/TOTP Bypass via Incorrect MongoDB Query in Bearer Token Middleware

ApostropheCMS is an open-source content management framework. Prior to version 4.28.0, the bearer token authentication middleware in @apostrophecms/express/index.js lines 386-389 contains an incorrect MongoDB query that allows incomplete login tokens — where the password was verified but TOTP/MFA...

8.1CVSS5.8AI score0.00362EPSS
Exploits1References1
CNNVD
CNNVD
•added 2022/09/23 12:0 a.m.•7 views

Rocket.Chat äæ”ęÆę³„éœ²ę¼ę“ž

Rocket.Chat is an open source team chat software. Rocket.Chat suffers from an information disclosure vulnerability that stems from the actionLinkHandler method allowing message ID enumeration using a Regex MongoDB query. An attacker can exploit the vulnerability to obtain sensitive information...

4.3CVSS6.1AI score0.00673EPSS
Exploits1References2
GithubExploit
GithubExploit
•added 2022/07/13 2:7 p.m.•11 views

Exploit for Expression Language Injection in Vmware Spring_Data_Mongodb

Springcve-2022-22980 spring data mongodb remote code executio...

9.8CVSS9AI score0.16903EPSS
Exploits3
CNNVD
CNNVD
•added 2020/12/11 12:0 a.m.•8 views

Mquery Security Vulnerability

Aheckmann Mquery is a Javascript-based codebase for efficiently generating Mongdb query statements from the individual developer Aheckmann. A security vulnerability exists in mquery lib/utils.js versions prior to 3.2.3, which allows contamination attacks because a special attribute e.g. proto can...

5.3CVSS6AI score0.01028EPSS
Exploits0References6
Rows per page
Query Builder