Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:25 p.m.8 views

CVE-2026-44200

Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited access to pages could copy a page they don't have access to to an area of the site they do. Once coped, they'd be able to view its contents, and potentially publish it...

6.5CVSS5.4AI score0.00201EPSS
Exploits0References1
CVE
CVE
added 2026/05/11 2:41 p.m.22 views

CVE-2026-44200

CVE-2026-44200 Overview (Wagtail) : Wagtail (Django-based CMS) had a permission flaw where a user with limited access to pages could copy a page they cannot access to a location they can, then view its contents and potentially publish it. The root cause was that source-page permissions were not e...

6.5CVSS5.8AI score0.00201EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-39235

Name of the Vulnerable Software and Affected Versions Wagtail versions prior to 7.0.7 Wagtail versions prior to 7.3.2 Description Improper permission handling allows a CMS user with limited page access to copy a page they are not authorized to access to a site area where they do have permissions...

6.5CVSS5.8AI score0.00201EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 8:46 p.m.3 views

Malicious code in teate-thy-sonic-rahhek (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9f71e9a06c3c104fab7fbf1c89c3d8ddf504cbdff977b96290fb42d07b65984 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in riyanto-poke61 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af7908611f8fe804342d7507f70b24d0e882273b5a32c3914423cddcd54d690d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-6068

Malicious code in bioql PyPI...

7.5CVSS7AI score0.03465EPSS
Exploits0References15
Rows per page
Query Builder