Lucene search
+L

5 matches found

NVD
NVD
added 2026/06/26 8:17 p.m.7 views

CVE-2026-44735

OpenProject is open-source, web-based project management software. Prior to 17.3.2 and 17.4.0, the GET /api/v3/shares endpoint returns share details for ALL work packages in a project to any user with the viewsharedworkpackages permission. The authorization check operates at the project level onl...

6.5CVSS0.0027EPSS
Exploits0References1
NVD
NVD
added 2026/04/07 4:16 p.m.6 views

CVE-2026-35488

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to 2.6.4, RecipeBookViewSet and RecipeBookEntryViewSet use CustomIsShared as an alternative permission class, but CustomIsShared.hasobjectpermission returns True for all HTTP methods —...

8.1CVSS0.00378EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6463

Malware in sbrugna...

7.8CVSS7.6AI score0.0031EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.7 views

PT-2024-35347 · Nextcloud · Nextcloud Tables

Name of the Vulnerable Software and Affected Versions: Nextcloud Tables versions prior to 0.8.1 Description: The issue concerns the sharing of table information in Nextcloud Tables, where the details about which table identified by a numeric ID is shared with specific groups and users, along with...

3.5CVSS6.9AI score0.00409EPSS
Exploits0References8
OSV
OSV
added 2020/02/06 1:10 p.m.3 views

USN-4271-1 mesa vulnerability

Tim Brown discovered that Mesa incorrectly handled shared memory permissions. A local attacker could use this issue to obtain and possibly alter sensitive information belonging to another user...

5.1CVSS5.9AI score0.00484EPSS
Exploits1References2
Rows per page
Query Builder