Lucene search
K

5 matches found

Cvelist
Cvelist
added 2026/06/23 3:52 p.m.31 views

CVE-2026-45732 n8n: Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized access using credential:read rather than credential:update. An authenticated user with read-only access to a shared credential could initiate ...

8.3CVSS0.00315EPSS
Exploits0References1
OSV
OSV
added 2026/03/17 11:16 a.m.8 views

PYSEC-2026-16

Apache Airflow versions 3.1.0 through 3.1.7 session token token in cookies is set to path=/ regardless of the configured webserver baseurl or api baseurl. This allows any application co-hosted under the same domain to capture valid Airflow session tokens from HTTP request headers, allowing full...

7.5CVSS5.4AI score0.00677EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 8:54 a.m.4 views

CVE-2021-41093

Wire is an open source secure messenger. In affected versions if the an attacker gets an old but valid access token they can take over an account by changing the email. This issue has been resolved in version 3.86 which uses a new endpoint which additionally requires an authentication cookie. See...

9.8CVSS7AI score0.01443EPSS
Exploits0References1
PyPA
PyPA
added 2024/02/09 12:15 a.m.7 views

PYSEC-2024-125

DIRAC is a distributed resource framework. In affected versions any user could get a token that has been requested by another user/agent. This may expose resources to unintended parties. This issue has been addressed in release version 8.0.37. Users are advised to upgrade. There are no known...

9.1CVSS6.7AI score0.00534EPSS
Exploits0References2Affected Software1
Jetbrains
Jetbrains
added 2021/08/05 12:0 a.m.57 views

JetBrains Security Bulletin Q2 2021

JetBrains News Security JetBrains Security Bulletin Q2 2021 Robert Demmer In the second quarter of 2021, we resolved a number of security issues in our products. Here’s a summary report that contains a description of each issue and the version in which it was resolved. Product | Description |...

9.8CVSS6.7AI score0.01452EPSS
Exploits0Affected Software5
Rows per page
Query Builder