Lucene search
K

5 matches found

EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38999

Missing Authentication for Critical Function CWE-306 in the RegisterView apps/accounts/views.py, exposed at POST /api/auth/register/, in MailerUp 1.0.1 allows a remote, unauthenticated attacker to self-register a working account on instances where registration is intended to be restricted, becaus...

8.8CVSS6AI score0.00406EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/24 3:37 p.m.46 views

CVE-2026-13164 Unauthenticated self-registration in MailerUp allows access to stored email data

Missing Authentication for Critical Function CWE-306 in the RegisterView apps/accounts/views.py, exposed at POST /api/auth/register/, in MailerUp 1.0.1 allows a remote, unauthenticated attacker to self-register a working account on instances where registration is intended to be restricted, becaus...

8.8CVSS0.00406EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 3:37 p.m.13 views

CVE-2026-13164

Technical details are not publicly available in the provided documents. Monitor for updates.

8.8CVSS6AI score0.00406EPSS
Exploits0References2
OSV
OSV
added 2026/02/17 8:22 p.m.5 views

CVE-2026-0102

Under specific conditions, a malicious webpage may trigger autofill population after two consecutive taps, potentially without clear or intentional user consent. This could result in disclosure of stored autofill data such as addresses, email, or phone number metadata...

3.1CVSS5.8AI score0.00463EPSS
Exploits0References1
Hacker One
Hacker One
added 2025/09/24 5:36 p.m.9 views

Nextcloud: Mail stored HTML injection in subject text

A vulnerability was discovered in the mail stored HTML injection in subject text. The vulnerability allowed for arbitrary HTML code to be injected into the subject line of emails stored in the system...

5.4CVSS5.8AI score0.00212EPSS
Exploits0
Rows per page
Query Builder