14 matches found
CVE-2026-25737 Budibase Arbitrary File Upload Leading to Multiple Critical Vulnerabilities (SSRF, Stored XSS)
Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.24.0 and earlier, an arbitrary file upload vulnerability exists even though file extension restrictions are configured. The restriction is enforced only at the UI level. An attacker can bypass these...
PT-2026-20322
Name of the Vulnerable Software and Affected Versions Gogs versions 0.13.4 and below Description Gogs, an open-source self-hosted Git service, contains an access control bypass issue. Repository collaborators with Write permissions can delete protected branches, including the default branch, by...
EUVD-2026-4950
Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions up to and including 3.26.3, a Creator-level user, who normally has no UI permission to invite users, can manipulate API requests to invite new users with any role, including Admin, Creator, or Ap...
PT-2026-5360
Name of the Vulnerable Software and Affected Versions Budibase versions prior to 3.26.4 Description Budibase is a low code platform used for building internal tools, workflows, and admin panels. A Creator-level user, normally lacking UI permissions to invite users, can manipulate API requests to...
EUVD-2024-32479
Malicious code in bioql PyPI...
MevzuatTR 安全漏洞
MevzuatTR is an online platform for retrieval and notification of judicial decisions in Turkey by MevzuatTR Turkey. A security vulnerability exists in MevzuatTR versions prior to 12.02.2025 that stems from improper input neutralization and improper UI layer or frame restriction, which could lead ...
CVE-2017-20041
A vulnerability was found in Ucweb UC Browser 11.2.5.932. It has been classified as critical. Affected is an unknown function of the component HTML Handler. The manipulation of the argument title leads to improper restriction of rendered ui layers URL. It is possible to launch the attack remotely...
Inaba Denki Sangyo Wi-Fi AP UNIT 安全漏洞
The Inaba Denki Sangyo Wi-Fi AP UNIT is a Wi-Fi AP unit from Inaba Denki Sangyo, a Japanese company. A security vulnerability exists in Inaba Denki Sangyo Wi-Fi AP UNIT v2.0.03P and prior versions, which stems from improper restrictions in the UI layer or framework, and could lead to the user...
CVE-2024-38446
NATO NCI ANET 3.4.1 mishandles report ownership. A user can create a report and, despite the restrictions imposed by the UI, change the author of that report to an arbitrary user without their consent or knowledge via a modified UUID in a POST request...
CVE-2024-38446
CVE-2024-38446 concerns NATO NCI ANET 3.4.1. The vulnerability allows an attacker to create a report and, by altering a UUID in a POST request, change the report author to an arbitrary user without their consent. This is a logic/authorization issue where report ownership is mishandled. Affected c...
CVE-2023-0780 Improper Restriction of Rendered UI Layers or Frames in cockpit-hq/cockpit
Improper Restriction of Rendered UI Layers or Frames in GitHub repository cockpit-hq/cockpit prior to 2.3.9-dev...
Vulnerability of the CSP configuration implementation: The base-uri header of browsers like Firefox, Firefox ESR, and the email client Thunderbird allows attackers to circumvent security restrictions.
Vulnerability of the CSP configuration implementation: The base-uri settings of Firefox, Firefox ESR, and the Thunderbird email client are related to incorrect restrictions on the layers or frames of the user interface when processing HTML elements. Exploiting this vulnerability allows a remote...
CVE-2020-26508
The WebTools component on Canon Oce ColorWave 3500 5.1.1.0 devices allows attackers to retrieve stored SMB credentials via the export feature, even though these are intentionally inaccessible in the UI...
Shopify: An administrator without the 'Settings' permission is able to see payment gateways
Description ==== An administrator who lacks the 'Settings' permission is not able to see the shops payment gateways through the UI. But the endpoint shop.myshopify.com/admin/paymentgateways.json does disclose payment gateways to the unprivileged user. Mitigation ==== Restrict the endpoint in...