Lucene search
K

11 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/26 7:2 p.m.8 views

CVE-2026-52779

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, a cross-project IDOR / authorization context confusion in the Calendar and Team Planner modules allows a user with management permissions in one project to delete public Calendar or Team Planner Queries...

5.4CVSS5.8AI score0.00185EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/05/14 9:16 p.m.32 views

CVE-2026-44678

Tuist is a virtual platform team for Swift app devs. In 1.180.8 and earlier, the DELETE /api/projects/accounthandle/projecthandle/previews/previewid endpoint loads the preview by its UUID without verifying that the preview belongs to the project resolved from the URL path. The route's project-lev...

7.1CVSS0.00226EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.12 views

PT-2026-31949

Name of the Vulnerable Software and Affected Versions Vikunja versions prior to 2.3.0 Description The CalDAV GetResource and GetResourcesByList methods retrieve tasks by UID from the database without verifying the authenticated user's access to the task's project. This allows any authenticated...

4.3CVSS5.9AI score0.00216EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-24840

Malware in sbrugna...

8.8CVSS8.7AI score0.0089EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-48991

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00498EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:50 p.m.7 views

CVE-2020-10083

GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied...

9.1CVSS6.7AI score0.01076EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/09/08 12:0 a.m.9 views

PT-2021-22102 · Unknown · Central Dogma

Name of the Vulnerable Software and Affected Versions: Central Dogma affected versions not specified Description: The issue allows for privilege escalation through mirroring to the internal dogma repository, which contains a file that manages project authorization. Recommendations: At the moment,...

8.8CVSS8.8AI score0.0089EPSS
Exploits0References5
OSV
OSV
added 2020/03/13 5:15 p.m.22 views

CVE-2020-10083

GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied...

9.1CVSS6.7AI score
Exploits0References2
NVD
NVD
added 2020/03/13 5:15 p.m.27 views

CVE-2020-10083

GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied...

9.1CVSS9.3AI score0.01076EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2020/03/13 4:51 p.m.37 views

CVE-2020-10083

Removed by vendor...

9.1CVSS7.3AI score0.01076EPSS
Exploits0
CVE
CVE
added 2020/03/13 4:51 p.m.71 views

CVE-2020-10083

CVE-2020-10083 affects GitLab 12.7–12.8.1. The issue is described as insecure permissions where, under certain conditions involving groups, project authorization changes were not being applied. The root cause is related to failure to update project authorizations, which could impact the intended ...

9.1CVSS9.1AI score0.01076EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder