21900 matches found
CVE-2026-5780
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the endpoint '/minerva/moUser/show/'. If this vulnerability is successfully exploited, an authenticated user can access the data of other registered users simply by modifying the ID. This allows an...
EUVD-2026-26038
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the endpoint '/minerva/moUser/show/'. If this vulnerability is successfully exploited, an authenticated user can access the data of other registered users simply by modifying the ID. This allows an...
CVE-2026-5780 Multiple vulnerabilities in MphRx's Minerva
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the endpoint '/minerva/moUser/show/'. If this vulnerability is successfully exploited, an authenticated user can access the data of other registered users simply by modifying the ID. This allows an...
EUVD-2026-26037
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/user/updateUserProfile' endpoint. This allows an authenticated user to modify the information of other registered users. Successful exploitation of this vulnerability allows an...
CVE-2026-5779 Multiple vulnerabilities in MphRx's Minerva
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/user/updateUserProfile' endpoint. This allows an authenticated user to modify the information of other registered users. Successful exploitation of this vulnerability allows an...
CVE-2026-5779 Multiple vulnerabilities in MphRx's Minerva
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/user/updateUserProfile' endpoint. This allows an authenticated user to modify the information of other registered users. Successful exploitation of this vulnerability allows an...
CVE-2026-5779
An insecure direct object reference IDOR vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/user/updateUserProfile' endpoint. This allows an authenticated user to modify the information of other registered users. Successful exploitation of this vulnerability allows an...
CVE-2026-5779
CVE-2026-5779 affects MphRx Minerva 3.6.0, via insecure direct object reference in the /minerva/user/updateUserProfile endpoint. An authenticated user can modify other registered users’ data (e.g., email) and initiate a password reset through /webconnect/#/forgotPassword, potentially leading to f...
MINI-34MP-H333-P63G
Bulletin has no description...
MINI-JVC4-WXQC-M4C5
Bulletin has no description...
CVE-2025-67223
creationtimestamp| type| source ---|---|--- 2026-04-28 09:00:05+00:00| seen| Telegram/dDiaPBuG5063OaJpBdVqzzs7lpwbpzaCXJ5I6hjB4akKrXs 2026-04-28 16:30:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkkz25mvtm2e 2026-04-28 21:00:04+00:00| seen|...
MINI-C497-3WJX-P8J4
Bulletin has no description...
MINI-R392-5GCW-6X26
Bulletin has no description...
MINI-RMMW-3RV8-PCVR
Bulletin has no description...
MINI-M875-5VX3-CJ96
Bulletin has no description...
MINI-754G-26W5-RFGG
Bulletin has no description...
MINI-PW2W-867X-R3MP
Bulletin has no description...
CVE-2026-41603
creationtimestamp| type| source ---|---|--- 2026-04-28 01:37:48+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkjh5ntlpa2z 2026-04-28 15:05:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkkucgueag2i...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-application (>=1.0.0 <=1.2.0) +39297 more potentially affected by CVE-2026-40973 via org.springframework.boot:spring-boot (>=1.0.0.RELEASE <=2.7.3)
org.springframework.boot:spring-boot MAVEN version =1.0.0.RELEASE, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =4.4.0.0, =4.6.0.0 and more Source cves: CVE-2026-40973 Source advisory: OSV:GHSA-WWPQ-F5C3-7HVX...
MINI-JR4M-V73F-WM6X
Bulletin has no description...