Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/05/12 8:21 p.m.10 views

CVE-2026-42858

Open edX Platform enables the authoring and delivery of online learning at any scale. The syncproviderdata endpoint in SAMLProviderDataViewSet allows authenticated Enterprise Admin users to supply an arbitrary URL via the metadataurl POST parameter. This URL is passed directly to requests.get in...

9.9CVSS6AI score0.00374EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/11 5:40 p.m.65 views

CVE-2026-42860 Open edx Enterprise Service: SSRF via SAML metadata URL in sync_provider_data endpoint

The Open edx Enterprise Service app provides enterprise features to the Open edX platform. From 7.0.2 to 7.0.4, the syncproviderdata endpoint in SAMLProviderDataViewSet fetches SAML metadata from a URL stored in SAMLProviderConfig.metadatasource. An authenticated user with the Enterprise Admin ro...

8.5CVSS0.00301EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/11 5:40 p.m.6 views

CVE-2026-42860

The Open edx Enterprise Service app provides enterprise features to the Open edX platform. From 7.0.2 to 7.0.4, the syncproviderdata endpoint in SAMLProviderDataViewSet fetches SAML metadata from a URL stored in SAMLProviderConfig.metadatasource. An authenticated user with the Enterprise Admin ro...

8.5CVSS5.9AI score0.00301EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/05/11 5:40 p.m.23 views

CVE-2026-42860

The CVE-2026-42860 issue affects Open edX Openedx Enterprise Service (edx-enterprise). From 7.0.2 through 7.0.4, the sync_provider_data endpoint retrieves SAML metadata from a URL stored in SAMLProviderConfig.metadata_source. An authenticated Enterprise Admin can PATCH this field to an arbitrary ...

8.5CVSS5.9AI score0.00301EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/11 5:40 p.m.10 views

CVE-2026-42860 Open edx Enterprise Service: SSRF via SAML metadata URL in sync_provider_data endpoint

The Open edx Enterprise Service app provides enterprise features to the Open edX platform. From 7.0.2 to 7.0.4, the syncproviderdata endpoint in SAMLProviderDataViewSet fetches SAML metadata from a URL stored in SAMLProviderConfig.metadatasource. An authenticated user with the Enterprise Admin ro...

8.5CVSS5.9AI score0.00301EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Open edX Platform 代码问题漏洞

The Open edX Platform is an open-source course management system developed by Open edX. This system can be used for MOOCs Massive Open Online Courses as well as smaller courses and training modules. The Open edX Platform has code vulnerabilities that stem from the syncproviderdata endpoint in the...

9.9CVSS6AI score0.00374EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.13 views

EDX Open edX 代码问题漏洞

EDX Open edX is an online learning management system developed by the American company EDX. Versions 7.0.2 to 7.0.4 of EDX Open edX have code vulnerabilities. These vulnerabilities stem from the syncproviderdata endpoint in the SAMLProviderDataViewSet, which retrieves the SAML metadata URL from...

8.5CVSS5.9AI score0.00301EPSS
Exploits1References1
OSV
OSV
added 2026/05/05 5:51 p.m.43 views

GHSA-64CV-VXPR-J6VC edx-enterprise has SSRF via SAML metadata URL in sync_provider_data endpoint

Summary The syncproviderdata endpoint in SAMLProviderDataViewSet fetches SAML metadata from a URL stored in SAMLProviderConfig.metadatasource. An authenticated user with the Enterprise Admin role can set this field to an arbitrary URL via the SAMLProviderConfigViewSet PATCH endpoint, then trigger...

8.5CVSS6.1AI score0.00301EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:8 p.m.5 views

CVE-2026-33042

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.29 and 8.6.49, a user can sign up without providing credentials by sending an empty authData object, bypassing the username and password requirement. This allows the creati...

6.9CVSS5.8AI score0.00294EPSS
Exploits0References1
CVE
CVE
added 2025/03/19 9:6 a.m.274 views

CVE-2025-27018

CVE-2025-27018 describes an SQL injection vulnerability in the Apache Airflow MySQL Provider (before 6.2.0) caused by improper neutralization of special elements in SQL commands. When a user triggers a DAG using the dump_sql or load_sql functions, a UI-passed table parameter could be crafted to e...

6.3CVSS7.5AI score0.00797EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/22 6:47 p.m.26 views

CVE-2024-39717

The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged with Provider-Data-Center-Admin or Provider-Data-Center-System-Admin. Tenant level users do not have this privilege. The “Change Favicon” Favorite Icon...

6.6CVSS6.9AI score0.04006EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2024/08/22 12:0 a.m.16 views

CVE-2024-39717

The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged with Provider-Data-Center-Admin or Provider-Data-Center-System-Admin. Tenant level users do not have this privilege. The “Change Favicon” Favorite Icon...

7.2CVSS7AI score0.04006EPSS
In wildExploits1References6
OSV
OSV
added 2024/08/21 2:30 p.m.6 views

GO-2022-0365 User object created with invalid provider data in GoTrue in github.com/netlify/gotrue

User object created with invalid provider data in GoTrue in github.com/netlify/gotrue...

7.1AI score
Exploits0References4
HackRead
HackRead
added 2023/10/05 3:38 p.m.18 views

Major CRM Provider Really Simple Systems Leaked 3M Customer Records

By Deeba Ahmed Really Simple Systems exposed its database publicly without any password or security authentication. KEY FINDINGS A global CRM… This is a post from HackRead.com Read the original post: Major CRM Provider Really Simple Systems Leaked 3M Customer Records...

7.1AI score
Exploits0
OSV
OSV
added 2023/09/06 4:15 a.m.4 views

CVE-2023-30725

Improper authentication in LocalProvier of Gallery prior to version 14.5.01.2 allows attacker to access the data in content provider...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/02/09 10:29 p.m.19 views

User object created with invalid provider data in GoTrue

Impact What kind of vulnerability is it? Who is impacted? Under certain circumstances a valid user object would have been created with invalid provider metadata. This vulnerability affects everyone running an instance of GoTrue as a service. We advise you to update especially if you are using the...

1.4AI score
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/10/25 12:0 a.m.24 views

Microsoft Windows AutoRuns Winsock Provider

Binary data windowsautorunswinsockproviders.nbin...

7.3AI score
Exploits0References2
Rows per page
Query Builder