Lucene search
K

7 matches found

EUVD
EUVD
added 2026/03/22 3:31 p.m.5 views

EUVD-2026-14308

A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...

3.1CVSS5AI score0.00276EPSS
Exploits0References4
NVD
NVD
added 2026/03/22 2:16 p.m.12 views

CVE-2026-4549

A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...

3.1CVSS0.00276EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/22 1:47 p.m.36 views

CVE-2026-4549 mickasmt next-saas-stripe-starter Stripe API open-customer-portal.ts openCustomerPortal authorization

A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...

3.1CVSS0.00276EPSS
Exploits0References3
CVE
CVE
added 2026/03/22 1:47 p.m.21 views

CVE-2026-4549

CVE-2026-4549 affects mickasmt next-saas-stripe-starter 1.0.0. The openCustomerPortal function in actions/open-customer-portal.ts within the Stripe API is reported to enable an authorization bypass. Remote exploitation is described as possible with high attack complexity. No remediation details a...

3.1CVSS5AI score0.00276EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/22 1:47 p.m.3 views

CVE-2026-4549

A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...

3.1CVSS5AI score0.00276EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/22 1:47 p.m.2 views

CVE-2026-4549 mickasmt next-saas-stripe-starter Stripe API open-customer-portal.ts openCustomerPortal authorization

A flaw has been found in mickasmt next-saas-stripe-starter 1.0.0. Affected by this issue is the function openCustomerPortal of the file actions/open-customer-portal.ts of the component Stripe API. This manipulation causes authorization bypass. Remote exploitation of the attack is possible. The...

3.1CVSS5AI score0.00276EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/22 12:0 a.m.10 views

Next SaaS Stripe Starter 安全漏洞

Next SaaS Stripe Starter is an integrated payment and authentication SaaS project starter developed by mickasmt as a personal developer. Version 1.0.0 of Next SaaS Stripe Starter contains a security vulnerability. This vulnerability stems from incorrect operations on the openCustomerPortal functi...

3.1CVSS5.8AI score0.00276EPSS
Exploits0References3
Rows per page
Query Builder