Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

NVD
NVDadded 2025/09/14 5:15 a.m.5 views

CVE-2025-59363

In One Identity OneLogin before 2025.3.0, a request returns the OIDC client secret with GET Apps API v2 even though this secret should only be returned when an App is first created,...

7.7CVSS0.00303EPSS
Exploits0References1
CVE
CVEadded 2025/09/14 12:0 a.m.27 views

CVE-2025-59363

In One Identity OneLogin prior to 2025.3.0, the GET /api/2/apps endpoint returned OIDC client_secret values alongside app metadata, enabling disclosure of sensitive credentials. This is caused by excessive data being returned by the Apps API v2 and constitutes a breach of confidentiality for OIDC...

7.7CVSS6.5AI score0.00303EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2019/11/02 12:29 p.m.46 views

Exploit for Cross-Site Request Forgery (CSRF) in Oneidentity Cloud_Access_Manager

CVE-2019-13497 Exploit Title: Cross Site Request Forgery CSR...

6.5CVSS6.6AI score0.00732EPSS
Exploits2
GithubExploit
GithubExploitadded 2019/11/02 11:41 a.m.111 views

Exploit for Improper Validation of Integrity Check Value in Oneidentity Cloud_Access_Manager

CVE-2019-13496 Exploit Title: OTP bypass Filed Integrity ch...

8.1CVSS7.8AI score0.01217EPSS
Exploits4
GithubExploit
GithubExploitadded 2019/08/02 9:22 p.m.99 views

Exploit for Cleartext Transmission of Sensitive Information in Oneidentity Cloud_Access_Manager

CVE-2019-13498 Exploit Title: MITM - Missing HSTS causing cre...

7.4CVSS7.7AI score0.01217EPSS
Exploits3
Rows per page
Query Builder