2 matches found
CVE-2026-56311
Capgo before 12.128.2 contains an authorization bypass vulnerability in the public.getcurrentplanmaxorg RPC function that allows unauthenticated attackers to retrieve arbitrary organization plan limits. Attackers can call the RPC endpoint with any organization UUID using only the public Supabase...
Denial Of Service (DoS)
typo3/cms is vulnerable to Denial Of Service. The vulnerability is due to the unbound cHash argument, which attackers can exploit it by using valid cHash arguments for multiple pages, leading to additional useless page cache entries. This allows an attackers to generate a considerable amount of...