Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Veracode
Veracodeadded 2022/07/03 6:37 p.m.21 views

Information Disclosure

cloud-init is vulnerable to information disclosure. An attacker can gain sensitive information through the error logs in validatecloudconfigschema function of schema.py...

5.5CVSS5.3AI score0.00026EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blogadded 2022/05/17 3:56 a.m.20 views

Roundup sensitive data disclosure vulnerability

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details...

4.3CVSS6.3AI score0.0013EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2022/05/17 3:56 a.m.20 views

GHSA-J556-Q367-2GW6 Roundup sensitive data disclosure vulnerability

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details...

5.3CVSS4AI score0.0013EPSS
Exploits0References6
OSV
OSVadded 2022/05/17 2:11 a.m.9 views

GHSA-9JP4-68VC-R8WQ FormEncode Access Restrictions Bypass

schema.py in FormEncode for Python python-formencode 1.0 does not apply the chainedvalidators feature, which allows attackers to bypass intended access restrictions via unknown vectors...

8.7CVSS6.1AI score0.00707EPSS
Exploits0References10
OSV
OSVadded 2016/04/13 2:59 p.m.27 views

PYSEC-2016-33

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details...

4.3CVSS3.9AI score0.0013EPSS
Exploits0References3
NVD
NVDadded 2016/04/13 2:59 p.m.13 views

CVE-2014-6276

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details...

4.3CVSS4.1AI score0.0013EPSS
Exploits0References3
CVE
CVEadded 2016/04/13 2:0 p.m.58 views

CVE-2014-6276

The CVE-2014-6276 entry corresponds to Roundup (web-based issue tracker) and affects versions before 1.5.1. The root cause is that schema.py does not properly restrict attributes in default user permissions, enabling remote authenticated users to view sensitive user details. Observed impact inclu...

4.3CVSS4AI score0.0013EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2016/04/13 2:0 p.m.22 views

CVE-2014-6276

schema.py in Roundup before 1.5.1 does not properly limit attributes included in default user permissions, which might allow remote authenticated users to obtain sensitive user information by viewing user details...

4.1AI score0.0013EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2009/03/30 1:30 a.m.14 views

CVE-2008-6547

schema.py in FormEncode for Python python-formencode 1.0 does not apply the chainedvalidators feature, which allows attackers to bypass intended access restrictions via unknown vectors...

7.5CVSS5.8AI score0.00707EPSS
Exploits0References1
CVE
CVEadded 2009/03/30 1:0 a.m.50 views

CVE-2008-6547

CVE-2008-6547 affects the Python FormEncode project (python-formencode) 1.0, where the function implemented in schema.py does not apply the chained_validators feature. This omission can allow bypass of intended access restrictions via unknown vectors, as described in multiple sources (NVD entry a...

7.5CVSS6.4AI score0.00707EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder