Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/03/07 7:59 a.m.5 views

CVE-2026-27605

Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. Prior to version 4.8.4, the application allows uploading files project logos without validating the file type or content. It trusts the extension provided by the user...

6.3CVSS5.7AI score0.00211EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/06 4:7 a.m.29 views

CVE-2026-27603 Chartbrew: Unauthenticated Chart Filter Endpoint: POST /project/:project_id/chart/:chart_id/filter missing verifyToken + checkPermissions

Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. Prior to version 4.8.4, the chart filter endpoint POST /project/:projectid/chart/:chartid/filter is missing both verifyToken and checkPermissions middleware, allowing...

8.7CVSS0.0042EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/24 12:0 a.m.3 views

PT-2024-24052 · Unknown · Roamwifi R10

Name of the Vulnerable Software and Affected Versions: RoamWiFi R10 versions prior to 4.8.45 Description: The issue is related to active debug code, allowing a network-adjacent unauthenticated attacker with access to the device to perform unauthorized operations. Recommendations: For RoamWiFi R10...

8.8CVSS7.2AI score0.00326EPSS
Exploits0References5
OSV
OSV
added 2020/11/25 10:15 p.m.3 views

CVE-2020-14191

Affected versions of Atlassian Fisheye/Crucible allow remote attackers to impact the application's availability via a Denial of Service DoS vulnerability in the MessageBundleResource within Atlassian Gadgets. The affected versions are before version 4.8.4...

7.5CVSS7.2AI score0.01212EPSS
Exploits0References2
Rows per page
Query Builder