Lucene search
+L

29 matches found

Vulnrichment
Vulnrichment
added 2026/01/19 5:48 p.m.2 views

CVE-2026-23646 OpenProject users can delete other user's session, causing them to be logged out

OpenProject is an open-source, web-based project management software. Users of OpenProject versions prior to 16.6.5 and 17.0.1 have the ability to view and end their active sessions via Account Settings → Sessions. When deleting a session, it was not properly checked if the session belongs to the...

6.5CVSS5.5AI score0.00315EPSS
Exploits0References3
OSV
OSV
added 2026/01/19 5:48 p.m.11 views

CVE-2026-23646 OpenProject users can delete other user's session, causing them to be logged out

OpenProject is an open-source, web-based project management software. Users of OpenProject versions prior to 16.6.5 and 17.0.1 have the ability to view and end their active sessions via Account Settings → Sessions. When deleting a session, it was not properly checked if the session belongs to the...

6.5CVSS5.6AI score0.00315EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-2770

Malware in sbrugna...

7.5CVSS7.6AI score0.01061EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-42320

Malicious code in bioql PyPI...

5.1CVSS5.1AI score0.00151EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-42319

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-33906

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00394EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:25 p.m.7 views

CVE-2022-39875

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.1CVSS4.9AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:24 p.m.5 views

CVE-2022-39874

Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.5CVSS5.3AI score0.00177EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/09 2:42 p.m.15 views

CVE-2024-23319 CSRF issue allows disconnecting a user's Jira connection through a simple post message (Jira Plugin)

Mattermost Jira Plugin fails to protect against logout CSRF allowing an attacker to post a specially crafted message that would disconnect a user's Jira connection in Mattermost only by viewing the message...

3.5CVSS6.6AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2023/06/03 5:15 a.m.5 views

CVE-2023-2415

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the vcitalogoutcallback function in versions up to, and including, 4.2.10. This makes it possible for authenticated attacker...

5.4CVSS6.7AI score0.00698EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2023/06/03 4:35 a.m.45 views

CVE-2023-2416 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5 - Cross-Site Request Forgery to Account Logout

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the vcitalogoutcallback function in versions up to, and including, 4.5. This makes it possible for unauthenticated to logout a vctia...

5.4CVSS6.8AI score0.00394EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.5 views

CVE-2022-39874

Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.5CVSS5.8AI score0.00177EPSS
Exploits0References2
OSV
OSV
added 2022/10/07 3:15 p.m.10 views

CVE-2022-39874

Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.5CVSS5.8AI score0.00177EPSS
Exploits0References1
NVD
NVD
added 2022/10/07 3:15 p.m.24 views

CVE-2022-39874

Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.5CVSS0.00177EPSS
Exploits0References1
NVD
NVD
added 2022/10/07 3:15 p.m.23 views

CVE-2022-39875

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.1CVSS0.00151EPSS
Exploits0References1
OSV
OSV
added 2022/10/07 3:15 p.m.8 views

CVE-2022-39875

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

4.4CVSS5.8AI score0.00151EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.6 views

CVE-2022-39875

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

5.1CVSS5.8AI score0.00151EPSS
Exploits0References2
Prion
Prion
added 2022/10/07 3:15 p.m.19 views

Information disclosure

Sensitive log information leakage vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

1.7CVSS5.3AI score0.00177EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/07 3:15 p.m.15 views

Design/Logic Flaw

Improper component protection vulnerability in Samsung Account prior to version 13.5.0 allows attackers to unauthorized logout...

3.2CVSS4.7AI score0.00151EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/10/07 12:0 a.m.4 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices is a series of Samsung mobile devices from South Korea's Samsung SAMSUNG, including cell phones, tablets, etc. SAMSUNG Mobile devices versions prior to 13.5.01.3 contain an access control error vulnerability that stems from improper protection of components in Samsung...

5.1CVSS6.6AI score0.00151EPSS
Exploits0References2
Rows per page
Query Builder