Lucene search
K

5 matches found

NVD
NVD
added 2026/04/19 12:16 p.m.9 views

CVE-2026-6571

A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipulation of the argument grouprole can lead to authorization bypass. The attack may be launched...

6.5CVSS0.0027EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/19 12:0 p.m.39 views

CVE-2026-6571 kodcloud KodExplorer systemRole.class.php roleGroupAction authorization

A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipulation of the argument grouprole can lead to authorization bypass. The attack may be launched...

6.5CVSS0.0027EPSS
Exploits0References4
CVE
CVE
added 2026/04/19 12:0 p.m.14 views

CVE-2026-6571

Kodcloud KodExplorer (up to 4.52) is affected by CVE-2026-6571. The vulnerability targets the function roleGroupAction in /app/controller/systemRole.class.php, where manipulating the group_role argument can bypass authorization. Access may be remote, and public exploit availability is noted. Vend...

6.5CVSS6.2AI score0.0027EPSS
Exploits0References4
OSV
OSV
added 2014/11/03 11:55 p.m.8 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.3AI score
Exploits0References8
Atlassian
Atlassian
added 2007/06/14 8:55 a.m.28 views

CommentService validation methods do not check user's security level

The validateCommentUpdate, hasPermissionToUpdate and hasPermissionToDelete methods on DefaultCommentService check the user's comment-related permissions but neglect to check whether they have a role/group security level viewable by the user attempting to delete a comment...

2.9AI score
Exploits0Affected Software1
Rows per page
Query Builder