Lucene search
K

4 matches found

Nuclei
Nuclei
added 20 hours ago19 views

Microsoft Exchange - Pre-Auth SSRF / ACL Bypass (ProxyNotFound)

Microsoft Exchange Server contains a remote code execution caused by improper input validation in the server component, letting remote attackers execute arbitrary code, exploit requires network access to the server. id: CVE-2021-28480 info: name: Microsoft Exchange - Pre-Auth SSRF / ACL Bypass...

10CVSS8.1AI score0.83337EPSS
Exploits4References5
EUVD
EUVD
added 2026/06/26 3:32 p.m.12 views

EUVD-2026-39650

It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an unrecognized or unsupported type. Users are recommended to upgrade to version 2.1.2, which fixes this issue...

7.3CVSS5.7AI score0.00321EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/19 9:46 a.m.160 views

Exploit for Improper Access Control in Fortinet Forticlientems

CVE-2026-35616 — FortiClient EMS Pre-Auth Bypass Proof of Con...

9.8CVSS5.8AI score0.88505EPSS
Exploits8
Github Security Blog
Github Security Blog
added 2026/04/10 12:30 a.m.8 views

Duplicate Advisory: OpenClaw: Synology Chat Webhook Pre-Auth Rate-Limit Bypass Enables Brute-Force Guessing of Webhook Token

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-mf5g-6r6f-ghhm. This link is maintained to preserve external references. Original Description OpenClaw before 2026.3.25 contains a pre-authentication rate-limit bypass vulnerability in webhook token validation...

6.5CVSS5.7AI score0.00244EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder