Lucene search
K

22586 matches found

CVE
CVE
added yesterday38 views

CVE-2026-46640

CVE-2026-46640 — Twig (PHP template engine) : The issue affects Twig 3.15.0 through 3.26.0 where _self.() and import-alias dynamic attribute syntax can concatenate attacker-controlled strings into a MacroReferenceExpression name, bypassing identifier validation and causing raw PHP to be emitted a...

8.7CVSS6.1AI score0.00056EPSS
Exploits0References3
CVE
CVE
added yesterday5 views

CVE-2026-15058

CVE-2026-15058 concerns Devolutions Server (versions 2026.2.11 and 2026.1.22) with an improper authorization flaw in the secure messages deletion endpoint. An authenticated user can delete another user’s messages by manipulating a direct object reference to the message identifier. The connected d...

6.1AI score
Exploits0References1
CVE
CVE
added yesterday3 views

CVE-2026-15637

The CVE-2026-15637 entry concerns Devolutions Server (versions 2026.2.11 and 2026.1.22) with improper authorization in the PAM SSH key and certificate retrieval endpoints. An authenticated, low-privileged user can disclose the private key of an SSH key or certificate PAM credential via a direct o...

6.1AI score
Exploits0References1
OSV
OSV
added yesterday9 views

ROOT-OS-UBUNTU-2204-CVE-2026-43022 CVE-2026-43022 in rootio-linux - Patched by Root

Root has patched CVE-2026-43022 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00107EPSS
Exploits0
OSV
OSV
added yesterday5 views

ROOT-OS-DEBIAN-12-CVE-2025-39751 CVE-2025-39751 in rootio-linux - Patched by Root

Root has patched CVE-2025-39751 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

7.9AI score
Exploits0
Nuclei
Nuclei
added yesterday20 views

Danswer - Insecure Direct Object Reference

The application does not verify whether the attacker is the creator of the file, allowing the attacker to directly call the GET /api/chat/file/fileid interface to view any user's file. id: CVE-2024-9617 info: name: Danswer - Insecure Direct Object Reference author: s4e-io severity: medium...

6.5CVSS6.6AI score0.01557EPSS
Exploits0
Nuclei
Nuclei
added yesterday8 views

ionCube Tester Plus <= 1.3 - Local File Inclusion

The ionCube Tester Plus plugin for WordPress versions = 1.3 is vulnerable to unauthenticated arbitrary file read via path traversal. The 'ininame' parameter in loader-wizard.php is not properly sanitized, allowing attackers to read sensitive files such as wp-config.php and /etc/passwd without...

7.5CVSS6.2AI score0.01609EPSS
Exploits0References2
Nuclei
Nuclei
added yesterday75 views

Zoho ManageEngine OpManager - SQL Injection

Zoho ManageEngine OpManager before 12.3 Build 123196 does not require authentication for /oputilsServlet requests, as demonstrated by a /oputilsServlet?action=getAPIKey request that can be leveraged against Firewall Analyzer to add an admin user via /api/json/v2/admin/addUser or conduct a SQL...

7.5CVSS7AI score0.66347EPSS
Exploits1References2
Nuclei
Nuclei
added yesterday14 views

Masteriyo LMS <= 1.7.3 - Insecure Direct Object Reference

Authentication Bypass Using an Alternate Path or Channel vulnerability in Masteriyo Masteriyo - LMS. Unauth access to course progress.This issue affects Masteriyo - LMS: from n/a through 1.7.3. id: CVE-2024-33939 info: name: Masteriyo LMS = 1.7.3 - Insecure Direct Object Reference author:...

5.3CVSS6.1AI score0.00843EPSS
Exploits0References2
Nuclei
Nuclei
added yesterday18 views

PraisonAI AgentOS - Information Disclosure

PraisonAI's AgentOS FastAPI application server exposes an unauthenticated GET /api/agents endpoint that lists every registered agent's name, role and the opening of its instructions system prompt. No authentication is enforced on the route, allowing a remote attacker to enumerate agent...

7.3CVSS7.1AI score0.26799EPSS
Exploits4
Circl
Circl
added yesterday8 views

CVE-2026-44747

creationtimestamp| type| source ---|---|--- 2026-07-14 00:54:07+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqkymgc6gn2r 2026-07-14 02:27:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mql5t5mr6v2x 2026-07-14 03:00:30+00:00| seen|...

9.9CVSS6.2AI score0.00439EPSS
Exploits0References17
CVE
CVE
added 2 days ago10 views

CVE-2026-55771

CVE-2026-55771 affects CedarJava prior to 4.9.0, where EntityIdentifier.equals() has inverted null/self-reference checks, causing incorrect equality results in custom integrations. The bug does not alter Cedar’s authorization decisions (computed in Rust from JSON) but could affect external code p...

8.8CVSS6AI score0.00345EPSS
Exploits0References1
CVE
CVE
added 2 days ago10 views

CVE-2026-61971

The CVE covers the WordPress plugin Metronet Profile Picture (Cozmoslabs User Profile Picture) insecure direct object references affecting versions

2.7CVSS6.1AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-61971 WordPress User Profile Picture plugin <= 2.6.3 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Cozmoslabs User Profile Picture metronet-profile-picture allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Profile Picture: from n/a through = 2.6.3...

2.7CVSS0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago27 views

CVE-2026-57694 WordPress Tutor LMS plugin <= 3.9.13 - Insecure Direct Object References (IDOR) vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Themeum Tutor LMS tutor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through = 3.9.13...

6.5CVSS0.00237EPSS
Exploits0References1
CVE
CVE
added 2 days ago10 views

CVE-2026-12274

CVE-2026-12274 affects the Tutor LMS WordPress plugin prior to 3.9.13. The underlying issue is that content-builder save handlers do not verify that the requesting user is authorized to edit the target post, instead authenticating only against an unrelated identifier. This allows authenticated us...

6.5CVSS6.1AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-12274 Tutor LMS < 3.9.13 - Instructor+ Arbitrary Post Overwrite via IDOR

The Tutor LMS WordPress plugin before 3.9.13 does not verify that the requesting user is allowed to edit a target post before overwriting it in one of its content-builder save handlers, authorizing the request only against an unrelated identifier, allowing authenticated users with instructor-leve...

0.00184EPSS
Exploits0References1
CVE
CVE
added 2 days ago8 views

CVE-2026-12271

The CVE describes a vulnerability in the Tutor LMS WordPress plugin prior to 3.9.13 where the system does not verify ownership of the targeted quiz attempt before writing to it. This allows authenticated users with subscriber-level access and above to modify and force-complete other students’ qui...

5.4CVSS6.1AI score0.0017EPSS
Exploits0References1
OSV
OSV
added 2 days ago2 views

MINI-53JX-P9PJ-2M68

Bulletin has no description...

7.5CVSS6.1AI score
Exploits0
OSV
OSV
added 2 days ago4 views

MINI-CFVV-PH5J-MRV8

Bulletin has no description...

6.1AI score
Exploits0
Rows per page
Query Builder