CVE-2026-34840

CVE-2026-34840 – OneUptime SSO (SAML) decoupled signature verification . Prior to 10.0.42, OneUptime’s SSO.ts uses isSignatureValid() to verify only the first in the XML DOM with xml-crypto while getEmail() reads identity from assertion[0] via xml2js, enabling an attacker to prepend an unsigned ...

CVE-2026-33746

Convoy is a KVM server management panel for hosting businesses. From version 3.9.0-beta to before version 4.5.1, the JWTService::decode method did not verify the cryptographic signature of JWT tokens. While the method configured a symmetric HMAC-SHA256 signer via lcobucci/jwt, it only validated...

CVE-2026-33746 Convoy: JWT Signature Verification Bypass Allows Authentication as Arbitrary Users

Convoy is a KVM server management panel for hosting businesses. From version 3.9.0-beta to before version 4.5.1, the JWTService::decode method did not verify the cryptographic signature of JWT tokens. While the method configured a symmetric HMAC-SHA256 signer via lcobucci/jwt, it only validated...

CVE-2026-32229

In JetBrains Hub before 2026.1 possible on sign-in account mismatch with non-SSO auth and 2FA disabled...

EUVD-2020-12788

Malware in sbrugna...

EUVD-2017-16672

Malware in sbrugna...

EUVD-2015-1538

Malware in sbrugna...

EUVD-2023-29510

Malicious code in bioql PyPI...

EUVD-2023-0241

Malicious code in bioql PyPI...

EUVD-2022-1220

Malicious code in bioql PyPI...

CVE-2025-32975

CVE-2025-32975 affects Quest KACE SMA versions 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2.x before 13.2.183, 14.0.x before 14.0.341 (Patch 5), and 14.1.x before 14.1.101 (Patch 4). The issue is an authentication bypass in the SSO authentication handling mechanism that could allow an atta...

CVE-2025-31478

CVE-2025-31478 applies to Zulip, an open-source team chat tool. A bug in the Zulip server allowed account creation in organizations that rely on a single-sign-on (SSO) backend and have disabled EmailAuthBackend, effectively bypassing the configured SSO. The issue affects configurations where acce...

GHSA-JW9C-MFG7-9RX2

creationtimestamp| type| source ---|---|--- 2025-03-12 20:07:18+00:00| seen| https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/...

GHSA-754F-8GM6-C4R2

creationtimestamp| type| source ---|---|--- 2025-03-12 20:07:18+00:00| seen| https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials/ 2025-03-12 21:40:48+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7388 2025-03-13...

CVE-2020-26276

Fleet is an open source osquery manager. In Fleet before version 3.5.1, due to issues in Go's standard library XML parsing, a valid SAML response may be mutated by an attacker to modify the trusted document. This can result in allowing unverified logins from a SAML IdP. Users that configure Fleet...

CVE-2024-9487

creationtimestamp| type| source ---|---|--- 2024-10-11 01:07:50+00:00| seen| https://t.me/cvedetector/7642 2024-10-15 10:13:12+00:00| seen| https://t.me/hackyourmom/9356 2024-10-16 07:08:52+00:00| seen| https://t.me/thehackernews/5737 2024-10-16 11:02:41+00:00| seen|...

CVE-2024-8853

The Webo-facto plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.40 due to insufficient restriction on the 'doSsoAuthentification' function. This makes it possible for unauthenticated attackers to make themselves administrators by registering with a...

CVE-2023-49111

For Kiuwan installations with SSO single sign-on enabled, an unauthenticated reflected cross-site scripting attack can be performed on the login page "login.html". This is possible due to the request parameter "message" values being directly included in a JavaScript block in the response. This is...

CVE-2023-49111 Reflected Cross-Site-Scripting in Kiuwan SAST

For Kiuwan installations with SSO single sign-on enabled, an unauthenticated reflected cross-site scripting attack can be performed on the login page "login.html". This is possible due to the request parameter "message" values being directly included in a JavaScript block in the response. This is...

CVE-2024-37895 API Key Leak in lobe-chat

Lobe Chat is an open-source LLMs/AI chat framework. In affected versions if an attacker can successfully authenticate through SSO/Access Code, they can obtain the real backend API Key by modifying the base URL to their own attack URL on the frontend and setting up a server-side request. This issu...