Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/04/01 2:48 p.m.1 views

CVE-2026-4828

Improper authentication in the OAuth login functionality in Devolutions Server 2026.1.11 and earlier allows a remote attacker with valid credentials to bypass multi-factor authentication via a crafted login request...

5.9AI score0.0026EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-4944

Malicious code in bioql PyPI...

7.2CVSS5.9AI score0.01887EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-51507

Malicious code in bioql PyPI...

5.3CVSS5.1AI score0.00601EPSS
Exploits0References2
NVD
NVD
added 2025/07/01 3:15 p.m.21 views

CVE-2025-53099

Sentry is a developer-first error tracking and performance monitoring tool. Prior to version 25.5.0, an attacker with a malicious OAuth application registered with Sentry can take advantage of a race condition and improper handling of authorization code within Sentry to maintain persistence to a...

7.5CVSS0.00672EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/05/30 2:22 p.m.27 views

CVE-2025-2571 Google OAuth Authentication Bypass for Converted Bot Accounts

Mattermost versions 10.7.x = 10.7.0, 10.6.x = 10.6.2, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fail to clear Google OAuth credentials when converting user accounts to bot accounts, allowing attackers to gain unauthorized access to bot accounts via the Google OAuth signup flow...

4.2CVSS0.00175EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/07/26 3:54 p.m.6 views

grafana: OAuth account takeover

A flaw was found in Grafana. This flaw allows a malicious user with the authorization to log into a Grafana instance via a configured OAuth IdP to take over an existing Grafana account under certain conditions...

7.5CVSS7.3AI score0.02039EPSS
Exploits0References5
Hacker One
Hacker One
added 2017/01/29 2:6 p.m.47 views

Pornhub: Account hijack via deleted PH account

The researcher identified a faulty Oauth implementation allowing YouPorn accounts to be hijacked. The researcher exploited a feature which links Pornhub and YouPorn accounts together by leveraging old accounts which were previously deleted, or where username was changed. A faulty Oauth auth...

1.2AI score
Exploits0
Rows per page
Query Builder