CVE-2026-31070

The LalanaChami Pharmacy Management System commit 5c3d028 allows unauthenticated remote attackers to escalate privileges by self-assigning an administrative role during registration. The /api/user/signup endpoint fails to validate the role parameter in the request body...

Taskosaur 安全漏洞

Taskosaur is an open-source project management platform that integrates conversational AI. Version 1.0.0 of Taskosaur contains a security vulnerability; this vulnerability arises from incorrect validation of role parameters during the user registration process, which may lead to unauthorized...