CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Github Security Blog•added 2026/03/25 9:8 p.m.•3 views

n8n is Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

Exploits0References3Affected Software1

OSV•added 2026/03/25 5:11 p.m.•2 views

CVE-2026-33663 n8n Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.27, an authenticated user with the global:member role could exploit chained authorization flaws in n8n's credential pipeline to steal plaintext secrets from generic HTTP credentials httpBasicAuth,...

Cvelist•added 2026/03/25 5:11 p.m.•20 views

CVE-2026-33663 n8n Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

8.5CVSS0.00022EPSS

Vulnrichment•added 2026/03/25 5:11 p.m.•4 views

CVE-2026-33663 n8n Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

CVE•added 2026/03/25 5:11 p.m.•11 views

CVE-2026-33663

Summary: CVE-2026-33663 affects n8n Community Edition. Before versions 2.14.1, 2.13.3, and 1.123.27, an authenticated user with the global:member role could exploit chained authorization flaws in the credential pipeline to steal plaintext secrets from generic HTTP credentials (httpBasicAuth, http...

Exploits0References1Affected Software1

Huntr•added 2026/02/25 7:28 a.m.•5 views

Authentication Bypass via endswith() Health Check Exemption Allows Unauthenticated Access to Variables/Secrets in prefecthq/prefect

Description When PREFECTSERVERAPIAUTHSTRING is configured, Prefect Server's authentication middleware exempts any URL path ending with "health" or "ready" to allow health check probes. However, multiple API endpoints accept user-controlled string names as URL path parameters e.g.,...

7.5CVSS7.1AI score0.00079EPSS

Exploits1

Veracode•added 2025/11/25 8:43 a.m.•3 views

Insecure Direct Object Reference (IDOR)

liferay-portal is vulnerable to an Insecure Direct Object Reference IDOR vulnerability. The vulnerability is due to the workflow definition API exposing resources based on user-supplied names without enforcing authorization checks, where the API resolves workflow definitions directly by name...

5.3CVSS7.1AI score0.00075EPSS

Exploits0References9Affected Software1

RedhatCVE•added 2025/11/13 1:0 a.m.•5 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

9.8CVSS7.1AI score0.00619EPSS

Exploits3References1

NVD•added 2025/11/12 4:15 p.m.•5 views

CVE-2025-63353

9.8CVSS0.00619EPSS

Exploits3References2

CVE•added 2025/10/20 5:39 p.m.•6 views

CVE-2025-62510

Summary: CVE-2025-62510 affects FileRise, a self-hosted web-based file manager. A regression in version 1.4.0 allowed folder visibility/ownership to be inferred from folder names, enabling low-privilege users to see or interact with folders that match their username and, in some cases, other user...

8.1CVSS6.4AI score0.00027EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/10/20 5:39 p.m.•6 views

CVE-2025-62510 FileRise insecure folder visibility via name-based mapping and incomplete ACL checks

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. In version 1.4.0, a regression allowed folder visibility/ownership to be inferred from folder names. Low-privilege users could see or interact with folders matching their username and, in some...

8.1CVSS0.00027EPSS

Vulnrichment•added 2025/10/20 5:39 p.m.•1 views

CVE-2025-62510 FileRise insecure folder visibility via name-based mapping and incomplete ACL checks

8.1CVSS6.4AI score0.00027EPSS

NVD•added 2025/09/11 6:15 p.m.•2 views

CVE-2025-43782

Insecure Direct Object Reference IDOR vulnerability in Liferay Portal 7.4.0 through 7.4.3.124, and Liferay DXP 2024.Q2.0 through 2024.Q2.7, 2024.Q1.1 through 2024.Q1.12, and 7.4 GA through update 92 allows remote authenticated users to access a workflow definition by name via the API...

5.3CVSS0.00075EPSS

CVE•added 2025/09/11 5:26 p.m.•11 views

CVE-2025-43782

The CVE-2025-43782 entry covers an Insecure Direct Object Reference (IDOR) in Liferay Portal/DXP where the workflow-definition API exposes resources by name, enabling remote authenticated users to access workflow definitions without proper authorization. Affected products/versions include Liferay...

5.3CVSS6.4AI score0.00075EPSS

Exploits0References1Affected Software2

Microsoft CVE•added 2024/10/15 7:0 a.m.•1 views

A flaw was found in the way Samba as an Active Directory Domain Controller implemented Kerberos name-based authentication. The Samba AD DC could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise.

...

9CVSS6.9AI score0.00213EPSS

Exploits0

OSV•added 2024/01/03 5:15 p.m.•2 views

UBUNTU-CVE-2024-21633

Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are...

7.8CVSS5.8AI score0.80522EPSS

Exploits2References4

OSV•added 2023/12/15 1:15 p.m.•16 views

CVE-2023-30867

In the Streampark platform, when users log in to the system and use certain features, some pages provide a name-based fuzzy search, such as job names, role names, etc. The sql syntax :select from table where jobName like '%jobName%'. However, the jobName field may receive illegal parameters,...

4.9CVSS5.6AI score