Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

Positive Technologies
Positive Technologiesadded 2026/05/13 12:0 a.m.9 views

PT-2026-40705

U-SPEED AC1200 Gigabit Wi-Fi Router Model: T18-21K V1.0 is vulnerable to Incorrect Access Control. The device exposes a UART interface that lacks authentication, authorization, or access control mechanisms. An attacker with physical access to the UART pins can connect to the interface and gain...

5.8AI score0.00033EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-13043

Malware in sbrugna...

5.3CVSS6.1AI score0.001EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-34623

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.05682EPSS
Exploits3References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-52846

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00234EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/07/03 12:23 a.m.4 views

CVE-2025-52101

linjiashop =0.9 is vulnerable to Incorrect Access Control. When using the default-generated JWT authentication, attackers can bypass the authentication and retrieve the encrypted "password" and "salt". The password can then be obtained through brute-force cracking...

9.8CVSS7.7AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:57 a.m.4 views

CVE-2024-29316

NodeBB 3.6.7 is vulnerable to Incorrect Access Control, e.g., a low-privileged attacker can access the restricted tabs for the Admin group via "isadmin":true...

6.3CVSS6.8AI score0.00091EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:6 a.m.6 views

CVE-2024-57032

WeGIA 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application does not validate the value of the old password, so it is possible to change the password by placing any value in the senhaantiga field...

9.8CVSS9.4AI score0.0057EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 6:45 a.m.5 views

CVE-2024-46054

OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible without authentication, allowing any user to upload files...

9.8CVSS7AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:56 a.m.7 views

CVE-2019-9221

An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control issue 3 of 5...

5.5CVSS6.6AI score0.00024EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/09/27 3:27 p.m.6 views

CVE-2022-40816

Zammad 5.2.1 is vulnerable to Incorrect Access Control. Zammad's asset handling mechanism has logic to ensure that customer users are not able to see personal information of other users. This logic was not effective when used through a web socket connection, so that a logged-in attacker would be...

6.1AI score0.00214EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/05/25 12:0 a.m.2 views

PT-2022-16261 · Truestack · Truestack Direct Connect

Name of the Vulnerable Software and Affected Versions: TrueStack Direct Connect version 1.4.7 Description: The issue is related to Incorrect Access Control. Recommendations: For version 1.4.7, update to a version that addresses the Incorrect Access Control issue...

9.8CVSS9.3AI score0.00451EPSS
Exploits0References3
Rows per page
Query Builder