CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

RedhatCVE•added 2026/02/28 1:55 a.m.•4 views

CVE-2026-28217

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS6AI score0.00017EPSS

Exploits1References1

ATTACKERKB•added 2026/02/26 10:38 p.m.•2 views

CVE-2026-28217

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS6AI score0.00017EPSS

Exploits1References3Affected Software1

CVE•added 2026/02/26 10:38 p.m.•6 views

CVE-2026-28217

Technical details about CVE-2026-28217 are not provided in the connected documents. Monitor for updates.

6.5CVSS5.7AI score0.00017EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2026/02/26 10:38 p.m.•3 views

CVE-2026-28217 IDOR in GraphQL userCollection Query Exposes Other Users' Private Collections

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the userCollection GraphQL query accepts an arbitrary collection ID and returns the full collection data — including title, type, and the serialized data field containing HTTP requests with headers and potentially...

6.5CVSS6AI score0.00017EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by