4 matches found
CVE-2026-28378
The CVE-2026-28378 entry describes a vulnerability in Grafana where the public dashboard deletion endpoint does not enforce organization isolation. An Org Admin in one organization can delete public dashboards belonging to another organization by supplying the target dashboard identifiers. Impact...
CVE-2026-57520
Bitwarden Server prior to 2026.5.0 is affected by a privilege-escalation vulnerability in the bulk user-remove endpoint. The issue arises from a missing role hierarchy check, allowing authenticated Custom users with ManageUsers permission to remove Admin accounts from an organization by supplying...
Study Reveals API Security Gaps in Asia-Pacific Compliance Programs
...
SQL Injection Vulnerability in the Management System of Official Vehicles of Organizations
Tianjin Guozhiheng Beidou Science and Technology Co., Ltd. is a computer field technology company, the company can provide the overall solution and implementation program of location information big data based on Beidou technology. There is a SQL injection vulnerability in the management system o...