Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/03/26 8:3 p.m.1 views

CVE-2026-3527 AJAX Dashboard - Critical - Access bypass - SA-CONTRIB-2026-022

Missing Authentication for Critical Function vulnerability in Drupal AJAX Dashboard allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Dashboard: from 0.0.0 before 3.1.0...

5.9AI score0.00243EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/17 12:0 a.m.13 views

PT-2023-19958 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions prior to 3.0.1 of the stable branch Discourse versions prior to 3.1.0.beta2 of the beta and tests-passed branches Description: Discourse is an open-source discussion platform. A maliciously crafted URL can be included in a...

5.4CVSS5.1AI score0.00527EPSS
Exploits0References11
OSV
OSV
added 2022/05/24 5:21 p.m.5 views

GHSA-H3QG-W9J5-WH3M Mattermost Server is vulnerable to XSS through lack of link relationship attributes `noreferrer` and `noopener`

An issue was discovered in Mattermost Server before 3.1.0. It allows XSS because the noreferrer and noopener protection mechanisms were not in place...

6.1CVSS6.4AI score0.00685EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/03/07 12:0 a.m.7 views

HTTPie 信息泄露漏洞

HTTPie is a command line HTTP client. An information disclosure vulnerability exists in HTTPie, which stems from the product's didna not being able to distinguish between hosts to which a cookie belongs. This vulnerability can be exploited to cause cookie disclosure. The following products and...

6.5CVSS5.9AI score0.01625EPSS
Exploits1References5
Rows per page
Query Builder