Lucene search
K

592 matches found

Cvelist
Cvelist
added 2026/02/25 11:2 p.m.27 views

CVE-2026-3209 fosrl Pangolin Role verifyApiKeyRoleAccess access control

A vulnerability has been found in fosrl Pangolin up to 1.15.4-s.3. This affects the function verifyRoleAccess/verifyApiKeyRoleAccess of the component Role Handler. The manipulation leads to improper access controls. Remote exploitation of the attack is possible. The exploit has been disclosed to...

6.5CVSS0.00306EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2026/02/09 8:37 p.m.13 views

Faraday affected by SSRF via protocol-relative URL host override in build_exclusive_url

Impact Faraday's buildexclusiveurl method in lib/faraday/connection.rb uses Ruby's URImerge to combine the connection's base URL with a user-supplied path. Per RFC 3986, protocol-relative URLs e.g. //evil.com/path are treated as network-path references that override the base URL's host/authority...

5.8CVSS5.7AI score0.00351EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2026/02/03 8:40 a.m.6 views

BIT-GHOST-2026-24778 Ghost vulnerable to XSS via malicious Portal preview links

Ghost is an open source content management system. In Ghost versions 5.43.0 through 5.12.04 and 6.0.0 through 6.14.0, an attacker was able to craft a malicious link that, when accessed by an authenticated staff user or member, would execute JavaScript with the victim's permissions, potentially...

8.8CVSS5.6AI score0.00255EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2026/02/02 12:0 a.m.132 views

📄 Pragyan CMS 3.0 Blind SQL Injection

A critical blind SQL injection vulnerability exists in Pragyan CMS version 3.0 and earlier, affecting the main index endpoint. The vulnerability allows unauthenticated remote attackers to execute arbitrary SQL commands and potentially compromise the entire database. This issue is older research...

6.2AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/01/29 7:57 p.m.5 views

CVE-2026-24687

Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud...

6CVSS5.9AI score0.0042EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/29 5:35 p.m.37 views

CVE-2026-24414 Icinga for Windows certificate can have too-open permissions

The Icinga PowerShell Framework provides configuration and check possibilities to ensure integration and monitoring of Windows environments. In versions prior to 1.13.4, 1.12.4, and 1.11.2, permissions of the Icinga for Windows certificate directory grant every user read access, which results in...

6.8CVSS0.00097EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.5 views

PT-2026-5210

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 3.5.4 Discourse versions prior to 2025.11.2 Discourse versions prior to 2025.12.1 Discourse versions prior to 2026.1.0 Description Discourse is an open source discussion platform. Moderators may be able to convert...

6.5CVSS5.7AI score0.00222EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/01/22 6:41 p.m.6 views

Rekor affected by Server-Side Request Forgery (SSRF) via provided public key URL

Summary /api/v1/index/retrieve supports retrieving a public key via a user-provided URL, allowing attackers to trigger SSRF to arbitrary internal services. Since the SSRF only can trigger GET requests, the request cannot mutate state. The response from the GET request is not returned to the calle...

5.3CVSS5.8AI score0.00332EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/01/22 6:41 p.m.9 views

Rekor's COSE v0.0.1 entry type nil pointer dereference in Canonicalize via empty Message

Summary Rekor’s cose v0.0.1 entry implementation can panic on attacker-controlled input when canonicalizing a proposed entry with an empty spec.message. validate returns nil success when message is empty, leaving sign1Msg uninitialized, and Canonicalize later dereferences v.sign1Msg.Payload. Impa...

5.3CVSS5.5AI score0.00384EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/01/22 6:6 p.m.10 views

Moonraker affected by LDAP search filter injection

Impact Instances of Moonraker configured with the ldap component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover...

6.9CVSS5.7AI score0.0027EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/01/20 5:14 p.m.7 views

EUVD-2026-3318

Lobe Chat has IDOR in Knowledge Base File Removal that Allows Cross User File Deletion...

3.7CVSS5.3AI score0.00194EPSS
Exploits0References3
NVD
NVD
added 2026/01/19 5:15 p.m.5 views

CVE-2026-23522

LobeChat is an open source chat application platform. Prior to version 2.0.0-next.193, knowledgeBase.removeFilesFromKnowledgeBase tRPC ep allows authenticated users to delete files from any knowledge base without verifying ownership. userId filter in the database query is commented out, so it's...

3.7CVSS0.00194EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/19 4:53 p.m.4 views

CVE-2026-23522

LobeChat is an open source chat application platform. Prior to version 2.0.0-next.193, knowledgeBase.removeFilesFromKnowledgeBase tRPC ep allows authenticated users to delete files from any knowledge base without verifying ownership. userId filter in the database query is commented out, so it's...

3.7CVSS5.5AI score0.00194EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/19 12:0 a.m.10 views

PT-2026-3475

Name of the Vulnerable Software and Affected Versions ESPHome versions 2025.9.0 through 2025.12.6 Description ESPHome is a system for remote microcontroller control via Home Automation systems. An integer overflow in the API component’s protobuf decoder can lead to denial-of-service attacks when...

7.5CVSS5.5AI score0.00273EPSS
Exploits0References14
OSV
OSV
added 2026/01/13 2:52 p.m.5 views

GHSA-67RJ-PJG6-PQ59 Jervis Has a SHA-256 Hex String Padding Bug

Vulnerability https://github.com/samrocketman/jervis/blob/157d2b63ffa5c4bb1d8ee2254950fd2231de2b05/src/main/groovy/net/gleske/jervis/tools/SecurityIO.groovyL622-L626 padLeft32, '0' should be padLeft64, '0'. SHA-256 produces 32 bytes = 64 hex characters. Impact Inconsistent hash lengths when leadi...

8.7CVSS7AI score0.00147EPSS
Exploits0References6
OSV
OSV
added 2026/01/10 3:31 p.m.3 views

GHSA-XF94-H87H-G9WR QuestDB UI's Web Console is Vulnerable to Cross-Site Scripting

A security flaw has been discovered in questdb ui up to 1.11.9. Impacted is an unknown function of the component Web Console. The manipulation results in cross site scripting. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks. Upgrading t...

5.1CVSS5.5AI score0.00242EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/01/09 9:11 a.m.12 views

CVE-2022-35916

OpenZeppelin Contracts is a library for secure smart contract development. Contracts using the cross chain utilities for Arbitrum L2, CrossChainEnabledArbitrumL2 or LibArbitrumL2, will classify direct interactions of externally owned accounts EOAs as cross chain calls, even though they are not...

5.3CVSS6.6AI score0.00475EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/01/08 9:13 p.m.11 views

Shakapacker has environment variable leak via EnvironmentPlugin that exposes secrets to client-side bundles

Summary Since 2017, the default webpack plugins have passed the entire process.env to EnvironmentPlugin. This pattern exposed ALL build environment variables to client-side JavaScript bundles whenever application code or any dependency referenced process.env.VARIABLENAME. This is not a regression...

7.1AI score
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.6 views

SUSE CVE-2025-68113

ALTCHA is privacy-first software for captcha and bot protection. A cryptographic semantic binding flaw in ALTCHA libraries allows challenge payload splicing, which may enable replay attacks. The HMAC signature does not unambiguously bind challenge parameters to the nonce, allowing an attacker to...

6.5CVSS6.7AI score0.00262EPSS
Exploits0References2
OSV
OSV
added 2025/12/16 12:43 a.m.4 views

GHSA-6GVQ-JCMP-8959 ALTCHA Proof-of-Work Vulnerable to Challenge Splicing and Replay

Impact A cryptographic semantic binding flaw in ALTCHA libraries allows challenge payload splicing, which may enable replay attacks. The HMAC signature does not unambiguously bind challenge parameters to the nonce, allowing an attacker to reinterpret a valid proof-of-work submission with a modifi...

6.5CVSS6.6AI score0.00262EPSS
Exploits0References13
Rows per page
Query Builder