Lucene search
K

254 matches found

Cvelist
Cvelist
added 2026/05/12 10:30 p.m.36 views

CVE-2026-44547 ChurchCRM: Incomplete fix for CVE-2026-40582: public API login still bypasses 2FA and account lockout in ChurchCRM 7.2.2

ChurchCRM is an open-source church management system. From 7.2.0 to 7.2.2, The fix for CVE-2026-4058 is incomplete. The hardening commit was merged and then silently stripped from src/api/routes/public/public-user.php by an unrelated PR before any 7.2.x tag was cut. Every shipped 7.2.x release...

9.6CVSS0.00209EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 10:30 p.m.19 views

CVE-2026-44547

CVE-2026-44547 affects ChurchCRM 7.2.0–7.2.2, where an incomplete fix for CVE-2026-4058 left the public login path exploitable. The hardening commit was merged but silently stripped from src/api/routes/public/public-user.php before any 7.2.x tag was cut, so all 7.2.x releases remain vulnerable. T...

9.6CVSS5.8AI score0.00209EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 10:30 p.m.11 views

CVE-2026-44547 ChurchCRM: Incomplete fix for CVE-2026-40582: public API login still bypasses 2FA and account lockout in ChurchCRM 7.2.2

ChurchCRM is an open-source church management system. From 7.2.0 to 7.2.2, The fix for CVE-2026-4058 is incomplete. The hardening commit was merged and then silently stripped from src/api/routes/public/public-user.php by an unrelated PR before any 7.2.x tag was cut. Every shipped 7.2.x release...

9.6CVSS5.8AI score0.00209EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/07 9:16 p.m.9 views

Exposure of Private Personal Information to an Unauthorized Actor

Overview Affected versions of this package are vulnerable to Exposure of Private Personal Information to an Unauthorized Actor via the Email field in the Comment model exposed through unauthenticated public API endpoints. An attacker can obtain the email addresses of all guest commenters by makin...

6.9CVSS5.8AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/07 3:58 a.m.9 views

CVE-2026-41142 OpenEXR is Vulnerable to Integer overflow in ImageChannel::resize leads to heap OOB write via OpenEXRUtil public API

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, there is an integer overflow in ImageChannel::resize that leads...

8.8CVSS5.8AI score0.00355EPSS
Exploits1References3
CVE
CVE
added 2026/05/07 3:58 a.m.24 views

CVE-2026-41142

OpenEXR is affected by CVE-2026-41142 due to an integer overflow in ImageChannel::resize that can cause a heap out-of-bounds write via the OpenEXRUtil public API. Affected versions are 3.0.0–before 3.2.9, 3.3.0–before 3.3.11, and 3.4.0–before 3.4.11. The issue is mitigated by patches in 3.2.9, 3....

8.8CVSS5.8AI score0.00355EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2026/05/07 3:58 a.m.11 views

EUVD-2026-28251

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, there is an integer overflow in ImageChannel::resize that leads...

8.8CVSS5.8AI score0.00355EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.12 views

PT-2026-38333

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.0.0 through 3.2.8 OpenEXR versions 3.3.0 through 3.3.10 OpenEXR versions 3.4.0 through 3.4.10 Description An integer overflow exists in the ImageChannel::resize function, which can lead to a heap out-of-bounds OOB write—a...

8.8CVSS5.9AI score0.00355EPSS
Exploits1References34
Github Security Blog
Github Security Blog
added 2026/05/06 4:59 p.m.11 views

Nginx-UI: Unauthenticated First-Run Installer Allows Remote Initial Admin Claim

Summary An unauthenticated network attacker can claim the initial administrator account on a fresh nginx-ui instance during the first-run setup window. The public /api/install endpoint is reachable without authentication, and the request-encryption flow only protects payload confidentiality in...

9.8CVSS5.9AI score0.00346EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/04 6:26 p.m.3 views

CVE-2026-42227

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with a valid API key scoped to variable:list could read variables from projects they are not a member of by supplying an arbitrary projectId query parameter to the public API...

6CVSS5.8AI score0.00203EPSS
Exploits0References2Affected Software1
RustSec
RustSec
added 2026/05/02 12:0 p.m.10 views

Out-of-bounds read in `bytes_helper` public safe functions

The byteshelper module contains multiple public functions intoarr4, intoarr2, u8fromlebytes that use slice.getuncheckedpos..pos + N without verifying that pos + N = slice.len. These are public safe API functions, allowing any caller to trigger undefined behavior by passing invalid positions. For...

5.8AI score
Exploits0Affected Software1
OSV
OSV
added 2026/05/02 12:0 p.m.11 views

RUSTSEC-2026-0123 Out-of-bounds read in `bytes_helper` public safe functions

The byteshelper module contains multiple public functions intoarr4, intoarr2, u8fromlebytes that use slice.getuncheckedpos..pos + N without verifying that pos + N = slice.len. These are public safe API functions, allowing any caller to trigger undefined behavior by passing invalid positions. For...

5.8AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/29 9:21 p.m.12 views

n8n has Public API Variables IDOR that Allows Cross-Project Secret Disclosure

Impact An authenticated user with a valid API key scoped to variable:list could read variables from projects they are not a member of by supplying an arbitrary projectId query parameter to the public API variables endpoint. The handler queried the variables repository directly without enforcing...

6.5CVSS5.7AI score0.00203EPSS
Exploits0References3Affected Software1
SUSE Linux
SUSE Linux
added 2026/04/24 11:51 a.m.6 views

Security update for python-ecdsa

This update for python-ecdsa fixes the following issues: CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions bsc1261009. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

6.3CVSS5.2AI score0.00476EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-35587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, a Server-Side Request Forgery SSRF vulnerability exists in the Glances ...

8.8CVSS5.7AI score0.00396EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/21 3:17 p.m.10 views

EUVD-2026-23990

Glances has SSRF in IP Plugin via publicapi leading to credential leakage...

8.6CVSS5.7AI score0.00396EPSS
Exploits1References4
OSV
OSV
added 2026/04/21 3:17 p.m.6 views

GHSA-G5PQ-48MJ-JVW8 Glances has SSRF in IP Plugin via public_api leading to credential leakage

Summary A Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP requests without any scheme restriction or hostname/IP validation. An attacker who...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/04/21 3:17 p.m.13 views

Glances has SSRF in IP Plugin via public_api leading to credential leakage

Summary A Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP requests without any scheme restriction or hostname/IP validation. An attacker who...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/21 10:11 a.m.5 views

CVE-2026-35587

A flaw was found in Glances, an open-source system monitoring tool. An attacker with the ability to modify the Glances configuration can exploit a Server-Side Request Forgery SSRF vulnerability. This flaw, caused by improper validation of the publicapi configuration parameter, allows the attacker...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References2
NVD
NVD
added 2026/04/21 12:16 a.m.4 views

CVE-2026-35587

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, a Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP...

8.8CVSS0.00396EPSS
Exploits1References2
Rows per page
Query Builder