Lucene search
K

33 matches found

Cvelist
Cvelist
added 2025/08/22 12:0 a.m.9 views

CVE-2024-50645

MallChat v1.0-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token...

0.00616EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/22 12:0 a.m.3 views

CVE-2024-50645

MallChat v1.0-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token...

6.8AI score0.00616EPSS
Exploits0References3
NVD
NVD
added 2025/08/21 6:15 p.m.40 views

CVE-2024-50641

An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token...

8.1CVSS0.00403EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/21 12:0 a.m.11 views

CVE-2024-50641

An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token...

0.00403EPSS
Exploits0References1
OSV
OSV
added 2025/08/20 5:15 p.m.5 views

CVE-2025-50904

There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 2025-06-11. An attacker can exploit this vulnerability to access /admin/ API without any token...

9.8CVSS5.8AI score0.00415EPSS
Exploits1References1
OSV
OSV
added 2025/08/20 3:15 p.m.3 views

CVE-2024-57491

Authentication Bypass vulnerability in jobx up to v1.0.1-RELEASE allows an attacker can exploit this vulnerability to access sensitive API without any token via the preHandle function...

8.8CVSS5.7AI score0.00328EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 3:15 p.m.37 views

CVE-2024-57491

Authentication Bypass vulnerability in jobx up to v1.0.1-RELEASE allows an attacker can exploit this vulnerability to access sensitive API without any token via the preHandle function...

8.8CVSS0.00328EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 12:0 a.m.4 views

CVE-2024-57157

Incorrect access control in Jantent v1.1 allows attackers to bypass authentication and access sensitive APIs without a token...

7.3AI score0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/20 12:0 a.m.11 views

CVE-2024-57155

Incorrect access control in radar v1.0.8 allows attackers to bypass authentication and access sensitive APIs without a token...

0.00397EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 12:0 a.m.23 views

CVE-2024-57491

CVE-2024-57491 affects jobx (up to v1.0.1-RELEASE). The vulnerability is an authentication bypass in the preHandle function, allowing access to sensitive APIs without a token. CVSSv3.1 base score 8.8 (HIGH) with network attack vector, low attack complexity, no privileges required, user interactio...

8.8CVSS7AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/30 12:0 a.m.7 views

Moodle 安全漏洞

Moodle is a free e-learning software platform open-sourced by Moodle, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle, which stems from an administrative "move up" and "move down" operation that does n...

5.7AI score
Exploits0References1
Hacker One
Hacker One
added 2021/09/24 9:19 p.m.22 views

Kubernetes: Tokenless GUI Authentication

Report Submission Form Summary: A person has the ability to bypass the login screen using the 401 error code produced from a failed token login. The user is given the privileges of an system:anonymous user. Kubernetes Version: kubectl, kubeadm, kubelet 1.22.2 Ubuntu 20.04.3 - 64bit Component...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/11/28 9:34 p.m.4 views

3: authentication bypass for elasticsearch with external routes

An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices...

6.5CVSS5.8AI score0.01398EPSS
Exploits0References4
Rows per page
Query Builder