CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 3 days ago•27 views

CVE-2026-56251 Capgo - Privilege Escalation via Broken Row Level Security in org_users

Capgo before 12.128.2 contains a broken row level security policy in the orgusers table that allows authenticated users to elevate privileges from admin to superadmin. Attackers can exploit the insufficient RLS enforcement to gain unauthorized superadmin access and compromise system security...

7CVSS0.00246EPSS

EUVD•added 3 days ago•6 views

EUVD-2026-38168

7CVSS5.8AI score0.00246EPSS

NVD•added 5 days ago•13 views

CVE-2026-56080

Capgo before 12.128.2 contains a flaw in the Enforce Password Policy feature: after a Super Admin enables the policy and successfully changes their password to a compliant one, the backend does not update the password-compliance state. As a result, the backend continues to treat the account as...

6.9CVSS0.00299EPSS

RedhatCVE•added 2026/06/05 7:34 p.m.•8 views

CVE-2026-10070

A vulnerability was found in macrozheng mall up to 1.0.3. This affects an unknown function of the file /admin/update/ of the component Super Admin Password Handler. Performing a manipulation results in improper authorization. Remote exploitation of the attack is possible. The vendor deleted the...

5.8CVSS5.2AI score0.00218EPSS

Exploits0References1

CVE•added 2026/05/29 4:15 p.m.•13 views

CVE-2026-10070

CVE-2026-10070 affects macrozheng mall up to version 1.0.3, specifically the Super Admin Password Handler in the /admin/update/ path. The root cause is improper authorization when performing a manipulation, enabling remote exploitation. The description notes that exploitation is possible remotely...

5.8CVSS5.5AI score0.00218EPSS

Exploits0References5

Cvelist•added 2026/05/29 4:15 p.m.•31 views

CVE-2026-10070 macrozheng mall Super Admin Password update improper authorization

5.8CVSS0.00218EPSS

Exploits0References5

CNNVD•added 2026/05/29 12:0 a.m.•7 views

mall 授权问题漏洞

Mall is a set of e-commerce systems developed by Macro Personal Developers, including a front-end shopping mall system and a back-end management system. Versions of Mall 1.0.3 and earlier had authorization-related vulnerabilities. These vulnerabilities stemmed from improper authorization in the...

5.8CVSS5.9AI score0.00218EPSS

Exploits0References5

Positive Technologies•added 2026/05/29 12:0 a.m.•8 views

PT-2026-44921

5.8CVSS5.5AI score0.00218EPSS

Exploits0References6

RedhatCVE•added 2026/05/26 2:12 a.m.•11 views

CVE-2026-41937

Vvveb before 1.0.8.3 contains an unrestricted file upload vulnerability in the plugin upload endpoint that allows superadmin users to execute arbitrary PHP code by uploading a malicious plugin ZIP file. Attackers can craft a ZIP containing a plugin.php with a valid Slug header and a...

OSV•added 2026/05/20 3:46 p.m.•4 views

Exploits0References1

GHSA-XVP4-PHQJ-CJR3 phpMyFAQ: IDOR Account Takeover

Summary An Insecure Direct Object Reference IDOR vulnerability in phpMyFAQ's Admin API allows any authenticated administrator to change the password of any user account, including SuperAdmin accounts userId=1, without authorization verification. An attacker with a low-privilege admin account can...

8.8CVSS5.8AI score0.00303EPSS

NVD•added 2026/05/15 10:16 p.m.•27 views

CVE-2026-45665

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, a Stored Cross-Site Scripting XSS vulnerability exists in the Banner component due to an improper sanitization order specifically, DOMPurify is executed before the marked library. Th...

8.1CVSS0.00322EPSS

Exploits1References1

ATTACKERKB•added 2026/05/15 9:42 p.m.•5 views

CVE-2026-45665

Exploits1References2Affected Software1

EUVD•added 2026/05/15 9:42 p.m.•17 views

EUVD-2026-30664

Github Security Blog•added 2026/05/14 8:27 p.m.•9 views

Exploits1References1

Open WebUI has Stored XSS in Banner Component via Improper Sanitization Order

Summary A Stored Cross-Site Scripting XSS vulnerability exists in the Banner component due to an improper sanitization order specifically, DOMPurify is executed before the marked library. This vulnerability allows a compromised or malicious administrator to plant a malicious payload in the global...

Exploits1References4Affected Software1

OSV•added 2026/05/14 8:27 p.m.•5 views

GHSA-CQP4-QQVG-3787 Open WebUI has Stored XSS in Banner Component via Improper Sanitization Order

ATTACKERKB•added 2026/05/14 2:30 p.m.•7 views

Exploits1References4

CVE-2026-41937

CVE•added 2026/05/14 2:30 p.m.•14 views

Exploits0References4

CVE-2026-41937

Summary: CVE-2026-41937 affects Vvveb prior to 1.0.8.3. An unrestricted file upload in the plugin upload endpoint lets super_admin users craft a ZIP (plugin.php with a valid Slug header and public/index.php) that executes arbitrary PHP code as the web server user when accessed at the plugin’s pub...

Positive Technologies•added 2026/05/14 12:0 a.m.•10 views

Exploits0References3

PT-2026-40944

Vvveb before 1.0.8.3 contains an unrestricted file upload vulnerability in the plugin upload endpoint that allows super admin users to execute arbitrary PHP code by uploading a malicious plugin ZIP file. Attackers can craft a ZIP containing a plugin.php with a valid Slug header and a...