Lucene search
+L

20 matches found

Circl
Circl
added 2026/07/11 2:40 p.m.12 views

CVE-2026-56296

creationtimestamp| type| source ---|---|--- 2026-07-11 14:40:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqevevaz5z2z 2026-07-11 15:36:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqeyjfs3bh2x...

6.9CVSS6.1AI score0.00239EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/14 12:31 p.m.41 views

CVE-2025-12008 IDOR in APPYAP's Yaay Social Media App

Authorization bypass through User-Controlled key vulnerability in APPYAP Technology and Information Inc. Yaay Social Media App allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Yaay Social Media App: from 3.8.0 through 24102025...

8.8CVSS0.00242EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.12 views

PT-2026-40908

Authorization bypass through User-Controlled key vulnerability in APPYAP Technology and Information Inc. Yaay Social Media App allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Yaay Social Media App: from 3.8.0 through 24102025...

8.8CVSS5.8AI score0.00242EPSS
Exploits0References2
Circl
Circl
added 2026/05/04 8:56 p.m.15 views

CVE-2026-42155

creationtimestamp| type| source ---|---|--- 2026-05-04 20:56:34+00:00| published-proof-of-concept| https://github.com/OpenMage/magento-lts/security/advisories/GHSA-2cwr-gcf9-pvxr 2026-05-16 03:00:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlwu63uqud2d...

9.3CVSS5.7AI score0.00267EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.9 views

CampusConnect 安全漏洞

CampusConnect is a university social networking application developed by CampusConnect in Ireland. Versions of CampusConnect prior to 14.3.5 contained a security vulnerability due to the use of hard-coded encryption keys...

4.8CVSS5.8AI score0.00144EPSS
Exploits0References4
Circl
Circl
added 2025/12/26 4:54 a.m.20 views

CVE-2025-68943

creationtimestamp| type| source ---|---|--- 2025-12-26 04:54:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mauisc3sqs22...

5.3CVSS5.8AI score0.00328EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-29146

Malware in sbrugna...

5.3CVSS5.4AI score0.01004EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:42 p.m.11 views

CVE-2020-8278

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5.3CVSS6.7AI score0.01004EPSS
Exploits1References1
CNVD
CNVD
added 2020/11/23 12:0 a.m.10 views

Nextcloud Social app access control error vulnerability

Nextcloud Nextcloud Social app is a social application from Nextcloud Germany. An access control error vulnerability exists in version 0.3.1 of the Nextcloud Social app. The vulnerability is related to the control system of the affected version not properly handling user access requests. There is...

5.3CVSS6.5AI score0.01004EPSS
Exploits1References1
NVD
NVD
added 2020/11/19 1:15 a.m.34 views

CVE-2020-8278

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5.3CVSS5.2AI score0.01004EPSS
Exploits1References2
OSV
OSV
added 2020/11/19 1:15 a.m.8 views

CVE-2020-8278

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5.3CVSS6.1AI score0.01004EPSS
Exploits1References2
Prion
Prion
added 2020/11/19 1:15 a.m.20 views

Improper access control

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5CVSS5.2AI score0.01004EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/11/19 12:32 a.m.36 views

CVE-2020-8278

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5.2AI score0.01004EPSS
Exploits1References2
CVE
CVE
added 2020/11/19 12:32 a.m.66 views

CVE-2020-8278

CVE-2020-8278 corresponds to a vulnerability in the Nextcloud Social app (version 0.3.1) where improper access control allows reading posts of any user. The root cause is missing authentication/authorization checks in the Social app’s access flow (notably the displayPost path in the ActivityPubCo...

5.3CVSS5.1AI score0.01004EPSS
Exploits1References2Affected Software1
Nextcloud
Nextcloud
added 2020/10/15 12:0 a.m.27 views

Improper access control to messages of Social app (NC-SA-2020-042)

Improper access control in Social app 0.3.1 allowed to read posts of any user...

5CVSS3.9AI score0.01004EPSS
Exploits1Affected Software1
Nextcloud
Nextcloud
added 2020/10/15 12:0 a.m.25 views

Social App does not validate server certificates for outgoing connections (NC-SA-2020-043)

Missing validation of server certificates for out-going connections allowed a man-in-the-middle attack...

5.8CVSS3.6AI score0.00639EPSS
Exploits1Affected Software1
Hacker One
Hacker One
added 2020/07/12 10:16 p.m.27 views

Nextcloud: Improper access control to messages of Social app

The Social App https://apps.nextcloud.com/apps/social lacks access controls in the displayPost function /@username/token allowing an unauthenticated user to view any message content by knowing or guessing the message ID. The vulnerable code is at...

5CVSS1.4AI score0.01004EPSS
Exploits1
Hacker One
Hacker One
added 2020/07/04 10:45 p.m.24 views

Nextcloud: Social App does not validate server certificates for outgoing connections

The Social App https://apps.nextcloud.com/apps/social does not validate the server TLS certificate for connections to other ActivityPub servers. These connections are used to retrieve the public key for a user or posting a message to another ActivityPub server. The public key for a user is used t...

5.8CVSS2.9AI score0.00639EPSS
Exploits1
myhack58
myhack58
added 2019/02/22 12:0 a.m.155 views

VR social app Bigscreen presence of security vulnerabilities, hackers executable MITR attack-vulnerability warning-the black bar safety net

Connecticut West Haven University security team found the VR social platform Bigscreen there is a serious security vulnerability. The vulnerability allows the attacker without the player permission to enter their virtual reality space, thereby enhancing system is embedded in a malicious program b...

Exploits0
hackapp
hackapp
added 2016/10/08 8:54 a.m.11 views

Fast - Social App - Customized SSL, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Fast - Social App published at the 'play' market has multiple vulnerabilities...

1.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder