EUVD-2026-31849

e107 is a content management system CMS. Prior to 2.3.4, a Broken Access Control vulnerability exists in the application, allowing an unauthorized authenticated user to edit comments posted by others. This stems from inadequate server-side access control validation, where the application depends...

GO-2026-4778 Juju affected by Confused Deputy IDOR attack via Predictable user specified ID in Juju Secrets in github.com/juju/juju

Juju affected by Confused Deputy IDOR attack via Predictable user specified ID in Juju Secrets in github.com/juju/juju...

EUVD-2020-23795

Malware in sbrugna...

EUVD-2018-5921

Malware in sbrugna...

EUVD-2025-6691

Malicious code in bioql PyPI...

CVE-2025-26138

Systemic Risk Value =2.8.0 is vulnerable to improper access control in /RiskValue/GroupingEntities/Controls/GetFile.aspx?ID=. Uploaded files are accessible via a predictable numerical ID parameter, allowing unauthorized users to increment or decrement the ID to access and download files they do n...

CVE-2025-26138

Systemic Risk Value =2.8.0 is vulnerable to improper access control in /RiskValue/GroupingEntities/Controls/GetFile.aspx?ID=. Uploaded files are accessible via a predictable numerical ID parameter, allowing unauthorized users to increment or decrement the ID to access and download files they do n...

CVE-2025-26138

CVE-2025-26138 affects Systemic Risk Value

PT-2025-4594 · Coolify · Coolify

Name of the Vulnerable Software and Affected Versions: Coolify versions prior to 4.0.0-beta.361 Description: The issue is related to missing authorization in Coolify, allowing any authenticated user to revoke team invitations by providing a predictable and incrementing ID. This can result in a...

OwnCloud Privilege Permission and Access Control Issues Vulnerability (CNVD-2021-18359)

OwnCloud OwnCloud is a personal cloud storage solution from OwnCloud Owncloud, an American company. A privilege permission and access control issue vulnerability exists in OwnCloud Server, which can be exploited by an attacker to access any version of any file by sending a request with a...

CVE-2020-36252

ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number...

CVE-2019-0007

The vMX Series software uses a predictable IP ID Sequence Number. This leaves the system as well as clients connecting through the device susceptible to a family of attacks which rely on the use of predictable IP ID sequence numbers as their base method of attack. This issue was found during...

Cross site request forgery (csrf)

Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device...

Mandriva Update for perl-Net-DNS MDKSA-2007:146 (perl-Net-DNS)

Check for the Version of perl-Net-DNS OpenVAS Vulnerability Test Mandriva Update for perl-Net-DNS MDKSA-2007:146 perl-Net-DNS Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Mandriva Update for perl-Net-DNS MDKSA-2007:146 (perl-Net-DNS)

Check for the Version of perl-Net-DNS OpenVAS Vulnerability Test Mandriva Update for perl-Net-DNS MDKSA-2007:146 perl-Net-DNS Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Moderate: Red Hat Security Advisory: perl-Net-DNS security update

An updated perl-Net-DNS package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...