Lucene search
K

6 matches found

vulnrichment
vulnrichment
added 2026/01/05 5:46 p.m.3 views

CVE-2025-59955 Coolify leaksensitive information `email_change_code` in `/api/v1/teams/{team_id | current}/members` API endpoint

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Coolify versions prior to and including v4.0.0-beta.420.8 have an information disclosure vulnerability in the /api/v1/teams/teamid/members and /api/v1/teams/current/members API endpoints allows...

7.1CVSS5.8AI score0.00252EPSS
Exploits1References1
cve
cve
added 2026/01/05 5:46 p.m.13 views

CVE-2025-59955

Coolify (versions ≤ 4.0.0-beta.420.8) has an information disclosure in /api/v1/teams/{team_id}/members and /api/v1/teams/current/members, allowing authenticated team members to access the email_change_code of other users on the same team. This code is intended for single-use email-change verifica...

7.1CVSS5.8AI score0.00252EPSS
Exploits1References1Affected Software1
ptsecurity
ptsecurity
added 2026/01/05 12:0 a.m.20 views

PT-2026-1315

Name of the Vulnerable Software and Affected Versions Coolify versions prior to and including 4.0.0-beta.420.8 Description Coolify is a self-hostable tool for managing servers, applications, and databases. The /api/v1/teams/team id/members and /api/v1/teams/current/members API endpoints allow...

7.1CVSS6.3AI score0.00252EPSS
Exploits1References4
cvelist
cvelist
added 2021/07/14 2:38 p.m.21 views

CVE-2020-27379

Cross Site Request Forgery CSRF vulnerability in Booking Core - Ultimate Booking System Booking Core 1.7.0 . The CSRF token is not being validated when the request is sent as a GET method. This results in an unauthorized change in the user's email ID, which can later be used to reset the password...

6.6AI score0.00485EPSS
Exploits0References1
securityvulns
securityvulns
added 2012/10/22 12:0 a.m.135 views

[waraxe-2012-SA#089] - Multiple Vulnerabilities in TorrentTrader 2.08

waraxe-2012-SA089 - Multiple Vulnerabilities in TorrentTrader 2.08 =============================================================================== Author: Janek Vind "waraxe" Date: 17. September 2012 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-89.html Description of vulnerable...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2012/09/19 12:0 a.m.26 views

torrenttrader 2.08 - Multiple Vulnerabilities

torrenttrader 2.08 - Multiple Vulnerabilities waraxe-2012-SA089 - Multiple Vulnerabilities in TorrentTrader 2.08 =============================================================================== Author: Janek Vind "waraxe" Date: 17. September 2012 Location: Estonia, Tartu Web:...

0.7AI score
Exploits0
Rows per page
Query Builder