PT-2025-37134

Name of the Vulnerable Software and Affected Versions: BeyondCart Connector plugin for WordPress versions 1.4.2 through 2.1.0 Description: The BeyondCart Connector plugin for WordPress is susceptible to privilege escalation due to improper JWT JSON Web Token secret management and authorization...

Meon KYC 授权问题漏洞

Meon KYC is a solution from Meon India. Meon KYC suffers from an authorization issue vulnerability that stems from the mishandling of access and refresh tokens by certain API endpoints during the authentication process, which could lead to unauthorized access to other user accounts...

Cisco Webex Meetings Security Vulnerability

Cisco Webex Meetings is a videoconferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which stems from the mishandling of authentication tokens on the Webex website. An attacker could exploit the vulnerability to join a Webex...

UBUNTU-CVE-2014-0105

The authtoken middleware in the OpenStack Python client library for Keystone aka python-keystoneclient before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, relat...