Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

SUSE CVE
SUSE CVEadded 2026/02/07 12:26 a.m.3 views

SUSE CVE-2026-20800

Gitea's notification API does not re-validate repository access permissions when returning notification details. After a user's access to a private repository is revoked, they may still view issue and pull request titles through previously received notifications...

6.5CVSS5.3AI score0.00018EPSS
Exploits0References3
OSV
OSVadded 2026/01/30 8:40 a.m.3 views

BIT-GITEA-2026-20800 Notification API Leaks Private Repository Issue Titles After Collaborator Permission Revocation

Gitea's notification API does not re-validate repository access permissions when returning notification details. After a user's access to a private repository is revoked, they may still view issue and pull request titles through previously received notifications...

6.5CVSS5.9AI score0.00018EPSS
Exploits0References5
CVE
CVEadded 2026/01/22 10:1 p.m.5 views

CVE-2026-20800

Gitea vulnerability CVE-2026-20800 arises from the notification API not re-validating repository access when returning notification details. Multiple sources confirm that after a user loses access to a private repository, they can still see issue/PR titles in previously received notifications, ex...

6.5CVSS5.4AI score0.00018EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/09 12:36 p.m.5 views

CVE-2023-49098

Discourse-reactions is a plugin that allows user to add their reactions to the post. Data about a user's reaction notifications could be exposed. This vulnerability was patched in commit 2c26939...

3.5CVSS6.7AI score0.00177EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:23 p.m.6 views

CVE-2018-14997

The Leagoo P1 Android device with a build fingerprint of sp7731c1h1032v4bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains the android framework i.e., systemserver with a package name of android that has been modified by Leagoo or another entity in the supply chain. The systemserv...

5.5CVSS6.5AI score0.00079EPSS
Exploits0References1
OSV
OSVadded 2025/11/04 2:15 a.m.1 views

CVE-2025-43309

A logic issue was addressed with improved checks. This issue is fixed in iOS 26 and iPadOS 26. An attacker with physical access to an iOS device may be able to view notification contents from the Lock Screen...

2.4CVSS5.7AI score0.00031EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/04 1:17 a.m.2 views

CVE-2025-43309

A logic issue was addressed with improved checks. This issue is fixed in iOS 26 and iPadOS 26. An attacker with physical access to an iOS device may be able to view notification contents from the Lock Screen...

4.9AI score0.00031EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-6862

Malware in sbrugna...

7.1CVSS7AI score0.00052EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-3957

Malware in sbrugna...

5.3CVSS5.6AI score0.00132EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-45055

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00199EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 10:44 a.m.7 views

CVE-2024-46988

Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.40, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15.12-6, users might receive email notification with information they should not have access to...

5.7CVSS6.7AI score0.00295EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 10:51 p.m.7 views

CVE-2022-41944

Discourse is an open-source discussion platform. In stable versions prior to 2.8.12 and beta or tests-passed versions prior to 2.9.0.beta.13, under certain conditions, a user can see notifications for topics they no longer have access to. If there is sensitive information in the topic title, it...

4.3CVSS6.4AI score0.00199EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/14 6:56 a.m.6 views

CVE-2025-30516 Unauthorized Notification Exposure in Mobile App Under Specific Conditions

Mattermost Mobile Apps versions =2.25.0 fail to terminate sessions during logout under certain conditions e.g. poor connectivity, allowing unauthorized users on shared devices to access sensitive notification content via continued mobile notifications...

2CVSS6.9AI score0.00364EPSS
Exploits0References1
Prion
Prionadded 2022/11/28 3:15 p.m.14 views

Design/Logic Flaw

Discourse is an open-source discussion platform. In stable versions prior to 2.8.12 and beta or tests-passed versions prior to 2.9.0.beta.13, under certain conditions, a user can see notifications for topics they no longer have access to. If there is sensitive information in the topic title, it...

4CVSS4.5AI score0.00199EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/11/28 12:0 a.m.8 views

CVE-2022-41944 Discourse users can see notifications for topics they no longer have access to

Discourse is an open-source discussion platform. In stable versions prior to 2.8.12 and beta or tests-passed versions prior to 2.9.0.beta.13, under certain conditions, a user can see notifications for topics they no longer have access to. If there is sensitive information in the topic title, it...

3.5CVSS4.5AI score0.00199EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/11/28 12:0 a.m.3 views

PT-2022-26174 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions prior to 2.8.12 Discourse versions prior to 2.9.0.beta13 Description: Discourse is an open-source discussion platform. Under certain conditions, a user can see notifications for topics they no longer have access to,...

4.3CVSS4.3AI score0.00199EPSS
Exploits0References8
NVD
NVDadded 2020/04/08 4:15 p.m.12 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.3CVSS5.4AI score0.00132EPSS
Exploits0References1
OSV
OSVadded 2020/04/08 4:15 p.m.1 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.3CVSS6.1AI score
Exploits0References1
Prion
Prionadded 2020/04/08 4:15 p.m.15 views

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5CVSS5.4AI score0.00132EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/04/08 3:35 p.m.18 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.4AI score0.00132EPSS
Exploits0References1
Rows per page
Query Builder