Lucene search
+L

59 matches found

Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-45695 Kopia: Unauthenticated RCE via SSH ProxyCommand Injection when --insecure --without-password is used

Kopia is a cross-platform backup tool for Windows, macOS, and Linux with fast incremental backups, client-side end-to-end encryption, compression, and data deduplication. Prior to 0.23.0, Kopia's HTTP server started with --without-password accepts unauthenticated requests to /api/v1/repo/exists a...

9.8CVSS0.00348EPSS
Exploits0References4
CVE
CVE
added 2 days ago83 views

CVE-2026-45695

Kopia prior to version 0.23.0 is vulnerable to unauthenticated remote command execution via SSH ProxyCommand Injection when the HTTP server runs with --without-password. An attacker can send requests to /api/v1/repo/exists, causing the server to forward attacker-supplied SFTP storage configuratio...

9.8CVSS6.1AI score0.00348EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 3 days ago8 views

PT-2026-60198

Name of the Vulnerable Software and Affected Versions Penpot versions prior to 2.14.5 Description An issue exists where invitation tokens from create-team-invitations in teams invitations.clj are exposed. Additionally, an existing profile id is embedded in prepare-register-profile within auth.clj...

9.9CVSS5.3AI score0.00283EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/07/06 8:44 p.m.6 views

CVE-2026-8926

A flaw was found in curl. When curl is configured to use a .netrc file for credentials and a URL is provided with a username but no password, curl may incorrectly retrieve and use the password for a different user from the .netrc file for the same host. This could lead to unauthorized information...

9.1CVSS5.8AI score0.0061EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/05/29 5:45 p.m.32 views

CVE-2026-44649 SillyTavern: Authentication Bypass via SSO Header Injection

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern accepts Remote-User Authelia and X-Authentik-Username Authentik HTTP headers to...

9.8CVSS0.00218EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in the supervisor

In Supervisor version 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer confirmed that the affected component, inethttpserver, is not enabled by default. However, if the user enables it and does not set a password, Supervisor will log a warning message...

8.2CVSS7.7AI score0.02283EPSS
Exploits0References2
OSV
OSV
added 2026/05/15 6:17 p.m.12 views

GHSA-QXVM-R42F-5P8J AVideo's Meet plugin: `uploadRecordedVideo.json.php` derives `users_id` from the uploaded filename and calls passwordless `User->login()`, allowing any caller with the Meet shared secret to obtain a session as arbitrary users including admin

Summary Type: Authorization-bypass via user-controlled identifier. The Meet plugin's recorded-video upload endpoint plugin/Meet/uploadRecordedVideo.json.php authenticates the caller using a single shared Authorization: Bearer against $objM-secret. Once that check passes, the endpoint reads the...

8.1CVSS5.9AI score0.00295EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/20 6:31 a.m.6 views

EUVD-2026-23753

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a sensitive information in resource not removed before reuse. An attacker may login to the device without knowing the password by sending a crafted packet...

7.1CVSS5.8AI score0.0026EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/08 12:7 a.m.7 views

Parse Server has a login timing side-channel reveals user existence

Impact The login endpoint response time differs measurably depending on whether the submitted username or email exists in the database. When a user is not found, the server responds immediately. When a user exists but the password is wrong, a bcrypt comparison runs first, adding significant...

6.3CVSS5.9AI score0.0023EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/02 5:44 p.m.10 views

theshit's Improper Privilege Dropping Allows Local Privilege Escalation via Command Re-execution

Impact Vulnerability Type: Local Privilege Escalation LPE / Improper Privilege Management / Arbitrary Command Execution. The application automatically re-executes the previously failed command but does not properly drop elevated privileges during this process. When the tool is executed with sudo ...

8.4CVSS6.2AI score0.00177EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/02/25 2:24 a.m.25 views

CVE-2026-27611 FileBrowser Quantum: Password Protection Not Enforced on Shared File Links

FileBrowser Quantum is a free, self-hosted, web-based file manager. Prior to versions 1.1.3-stable and 1.2.6-beta, when users share password-protected files, the recipient can completely bypass the password and still download the file. This happens because the API returns a direct download link i...

7.1CVSS0.00307EPSS
Exploits1References2
CVE
CVE
added 2026/02/25 2:24 a.m.26 views

CVE-2026-27611

CVE-2026-27611 affects FileBrowser Quantum, a web-based file manager. When sharing password-protected files, the API exposes a direct download link via the share details, allowing anyone with the share link (no password) to download the file. Affected versions are before 1.1.3-stable and 1.2.6-be...

7.1CVSS5.4AI score0.00307EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2026/02/19 7:17 a.m.8 views

CVE-2025-15586

OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if exploited can result in authentication bypass without knowledge of the victim account's password...

10CVSS0.00382EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/02 2:12 p.m.7 views

CVE-2022-50981

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00527EPSS
Exploits0References3Affected Software10
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : rh-mariadb105-mariadb (AXSA:2022-3124:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3124:01 advisory. mysql: Server: DML unspecified vulnerability CPU Apr 2021 CVE-2021-2154 mysql: Server: DML unspecified vulnerability CPU Apr 2021 CVE-2021-2166 mysq...

7.1CVSS6.7AI score0.08216EPSS
Exploits4References10
Vulnrichment
Vulnrichment
added 2026/01/13 10:52 p.m.5 views

CVE-2023-54335 eXtplorer<= 2.1.14 - Authentication Bypass & Remote Code Execution (RCE)

eXtplorer 2.1.14 contains an authentication bypass vulnerability that allows attackers to login without a password by manipulating the login request. Attackers can exploit this flaw to upload malicious PHP files and execute remote commands on the vulnerable file management system...

9.8CVSS7.5AI score0.04962EPSS
Exploits1References3
OSV
OSV
added 2026/01/13 10:52 p.m.6 views

CVE-2023-54335 eXtplorer<= 2.1.14 - Authentication Bypass & Remote Code Execution (RCE)

eXtplorer 2.1.14 contains an authentication bypass vulnerability that allows attackers to login without a password by manipulating the login request. Attackers can exploit this flaw to upload malicious PHP files and execute remote commands on the vulnerable file management system...

9.3CVSS6.1AI score0.04962EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-25820

Name of the Vulnerable Software and Affected Versions Glances versions prior to 4.5.2 Description Glances, an open-source system cross-platform monitoring tool, contains a critical issue in its Central Browser mode. The /api/4/serverslist endpoint returns raw server objects that can contain...

9.4CVSS5.8AI score0.00472EPSS
Exploits1References38
RedhatCVE
RedhatCVE
added 2025/11/12 2:3 p.m.21 views

CVE-2025-11084

A security issue exists within DataMosaix™ Private Cloud, allowing attackers to bypass MFA during setup and obtain a valid login-token cookie without knowing the users password. This vulnerability occurs when MFA is enabled but not completed within a 7-day period...

7.6CVSS6.6AI score0.00145EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-2248

Malware in sbrugna...

10CVSS9.5AI score0.01822EPSS
Exploits0References3
Rows per page
Query Builder