Lucene search
K

15 matches found

CVE
CVE
added 2026/06/19 1:11 p.m.15 views

CVE-2026-49357

CVE-2026-49357 affects line-desktop-mcp (LINE Desktop MCP). In --http-mode, the MCP server binds to 0.0.0.0 and exposes the /mcp endpoint without MCP authentication, enabling any network client on the port to initialize a session, list tools, and call tools that read LINE Desktop chat history or ...

8.8CVSS5.9AI score0.00323EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/19 1:11 p.m.28 views

CVE-2026-49357 Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication

Line Desktop MCP is a project that, while unaffiliated with the official line-bot-mcp-server, allows users to directly operate the LINE Desktop application on Windows or Mac via MCP. line-desktop-mcp supports a --http-mode Streamable HTTP transport for use with clients such as n8n. In this mode t...

8.8CVSS0.00323EPSS
Exploits0References2
CNVD
CNVD
added 2025/12/10 12:0 a.m.4 views

mall-swarm authorization issue vulnerability

mall-swarm is a microservice mall system. An authorization issue vulnerability exists in mall-swarm, which stems from incorrect manipulation of the parameter ids in the file /member/readHistory/delete, for which no detailed vulnerability details are provided at this time...

8.1CVSS5.5AI score0.00259EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/05 6:34 p.m.6 views

CVE-2025-14016

A security vulnerability has been detected in macrozheng mall-swarm up to 1.0.3. Affected is the function delete of the file /member/readHistory/delete. Such manipulation of the argument ids leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed...

8.1CVSS6.6AI score0.00259EPSS
Exploits1References1
NVD
NVD
added 2025/12/04 7:16 p.m.8 views

CVE-2025-14016

A security vulnerability has been detected in macrozheng mall-swarm up to 1.0.3. Affected is the function delete of the file /member/readHistory/delete. Such manipulation of the argument ids leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed...

8.1CVSS0.00259EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/04 6:32 p.m.4 views

CVE-2025-14016 macrozheng mall-swarm delete improper authorization

A security vulnerability has been detected in macrozheng mall-swarm up to 1.0.3. Affected is the function delete of the file /member/readHistory/delete. Such manipulation of the argument ids leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed...

5.5CVSS5.4AI score0.00259EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/11/28 8:8 p.m.8 views

CVE-2025-13443

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now...

6.5CVSS6.5AI score0.00203EPSS
Exploits1References1
NVD
NVD
added 2025/11/20 3:17 p.m.12 views

CVE-2025-13443

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now...

6.5CVSS0.00203EPSS
Exploits1References4
OSV
OSV
added 2025/11/20 3:17 p.m.4 views

CVE-2025-13443

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now...

6.5CVSS6.7AI score0.00203EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/20 2:2 a.m.14 views

CVE-2025-13443 macrozheng mall delete access control

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now...

5.5CVSS0.00203EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/11/20 12:0 a.m.8 views

PT-2025-47549

A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the function delete of the file /member/readHistory/delete. Performing manipulation of the argument ids results in improper access controls. Remote exploitation of the attack is possible. The exploit is now...

5.5CVSS5.4AI score0.00203EPSS
Exploits1References4
EUVD
EUVD
added 2025/11/18 6:32 p.m.6 views

EUVD-2025-198045

Mattermost allows other users to determine when users had read channels via channel member objects...

3CVSS6.3AI score0.00145EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 3:1 a.m.5 views

CVE-2023-1750

The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could retrieve device history, set device settings, and retrieve device information...

7.1CVSS6.8AI score0.00485EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:5 a.m.1 views

SUSE CVE-2016-2810

Mozilla Firefox before 46.0 on Android before 5.0 allows attackers to bypass intended Signature access requirements via a crafted application that leverages content-provider permissions, as demonstrated by reading the browser history or a saved password...

5CVSS6.6AI score0.0085EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

The vulnerability of the Internet Explorer browser, which allows a violator to read browsing history.

Vulnerability of the Internet Explorer browser due to the absence of protection for service data. Exploitation of this vulnerability allows a malicious actor to read browsing history using a specially crafted web page...

4.3CVSS5.4AI score0.14241EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder