Lucene search
+L

4 matches found

snyk
snyk
added 2026/06/17 6:9 p.m.8 views

Incorrect Authorization

Overview code.gitea.io/gitea/models is a self-hosted git service. Affected versions of this package are vulnerable to Incorrect Authorization in the handling of token scope restrictions in the /api/v1/user route group. An attacker can gain unauthorized access to or modify private account resource...

8.6CVSS5.9AI score
Exploits0References2
snyk
snyk
added 2026/06/16 11:41 p.m.3 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization in the checkTokenPublicOnly function. An attacker can access private organization data by using a public-only scoped API token to enumerate organizations, thereby bypassing intended access restrictions. Remediation...

5.3CVSS5.9AI score0.00271EPSS
Exploits0References2
snyk
snyk
added 2026/06/16 11:40 p.m.4 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the HTTP Basic authentication. An attacker can perform unauthorized write actions, such as modifying user profiles, adding email addresses, creating repositories, and deleting repositories, by submitting an...

8.6CVSS5.9AI score0.00566EPSS
Exploits1References2
debian
debian
added 2026/06/01 6:16 p.m.15 views

[SECURITY] [DSA 6318-1] gst-plugins-good1.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6318-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 01, 2026 https://www.debian.org/security/faq -...

9.1CVSS7.3AI score0.00208EPSS
Exploits0
Rows per page
Query Builder