Lucene search
K

417990 matches found

EUVD
EUVD
added 2026/06/20 3:24 p.m.9 views

EUVD-2026-38115

Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and internal addresses. Organization admins can configure webhooks pointing to localhost or 127.0.0.1, and when triggered, the backend performs outbound requests to these...

5.4CVSS5.8AI score0.00156EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 3:24 p.m.9 views

EUVD-2026-38114

Capgo before 12.128.2 fails to strip EXIF metadata including GPS geolocation data from uploaded images, allowing information disclosure. Attackers can download uploaded images and extract precise latitude and longitude coordinates revealing user physical location at capture time...

6.9CVSS5.8AI score0.00205EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 3:24 p.m.7 views

EUVD-2025-210289

Flowise before 3.0.8 contains a cross-site scripting XSS vulnerability caused by insufficient input filtering in chat messages and custom agent functions. An attacker can inject malicious JavaScript by sending an iframe payload e.g., in a chat box, or by having a custom agent function return an X...

6.1CVSS5.7AI score0.00222EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/20 3:21 p.m.6 views

EUVD-2026-38113

Capgo before 12.128.2 uses ILIKE pattern matching instead of exact matching for appid lookup in the preview subdomain resolver, allowing underscore characters in appid to act as SQL wildcards. Attackers can create apps with appids differing by one character at underscore positions to cause...

3.1CVSS5.9AI score0.00215EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 3:21 p.m.7 views

EUVD-2026-38112

Nuxt before 4.4.7 and the 3.x branch before 3.21.7 contains a cross-site scripting vulnerability in the NoScript component that writes slot content to innerHTML without escaping. Attackers can inject malicious scripts through untrusted data in NoScript slots, such as route.query parameters, which...

2.3CVSS5.7AI score0.00209EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/20 3:21 p.m.7 views

EUVD-2024-55642

Flowise before 2.1.4 allows configuration to be injected into the Chainflow during execution via the overrideConfig option, supported in both the frontend web integration and the backend Prediction API. Because this feature is enabled by default with no allow-list of permitted variables and relie...

9.8CVSS6.5AI score0.00648EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 1:37 p.m.10 views

EUVD-2022-56008

WooCommerce 7.1.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary PHP code by injecting shell commands through the product-type parameter. Attackers can send requests to the class-wc-meta-box-product-images.php endpoint with unsanitized product-type value...

9.8CVSS6.8AI score0.00629EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 1:36 p.m.8 views

EUVD-2020-31256

WordPress Time Capsule Plugin 1.21.16 contains an authentication bypass vulnerability that allows unauthenticated attackers to gain administrative access by sending a crafted POST request with the IWPJSONPREFIX header. Attackers can exploit this flaw to obtain valid administrator session cookies...

8.7CVSS5.9AI score0.00398EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 1:36 p.m.8 views

EUVD-2019-20199

WordPress Ultimate Addons for Beaver Builder 1.2.4.1 contains an authentication bypass vulnerability that allows attackers to gain unauthorized access by exploiting the social media login form functionality. Attackers can submit a POST request to the admin-ajax.php endpoint with the...

9.8CVSS5.9AI score0.00428EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:36 p.m.10 views

EUVD-2026-38111

Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability resulting in privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary non-default group...

5.9CVSS5.8AI score0.0026EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 11:57 a.m.9 views

EUVD-2026-38110

A vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary files for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS6.1AI score0.00803EPSS
Exploits5References1
EUVD
EUVD
added 2026/06/20 11:56 a.m.16 views

EUVD-2026-38109

A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution...

10CVSS6AI score0.00564EPSS
Exploits3References1
EUVD
EUVD
added 2026/06/20 11:56 a.m.10 views

EUVD-2026-38108

SP LMS comsplms 4.1.4 by JoomShaper deserializes user-controlled cookie data without validation, enabling an unauthenticated remote attacker to execute arbitrary code on the server...

9.5CVSS6.3AI score0.02726EPSS
Exploits3References1
EUVD
EUVD
added 2026/06/20 8:29 a.m.8 views

EUVD-2026-38107

The Simple File List plugin for WordPress is vulnerable to unauthorized file operations due to a missing authorization check on the 'frontmanage' shortcode attribute in all versions up to, and including, 6.3.7. This makes it possible for authenticated attackers, with contributor-level access and...

6.5CVSS6AI score0.00267EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/20 8:29 a.m.9 views

EUVD-2026-38106

The Simple File List plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the eeSFLDeleteFile function in all versions up to, and including, 6.3.7. This makes it possible for unauthenticated attackers to delete arbitrary files on the server,...

7.5CVSS6.7AI score0.0078EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/20 8:29 a.m.8 views

EUVD-2026-38105

The Simple File List plugin for WordPress is vulnerable to arbitrary file modification due to insufficient authorization checks in all versions up to, and including, 6.3.7. This makes it possible for unauthenticated attackers to delete and modify files on the serve. This vulnerability is...

7.5CVSS6AI score0.00433EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/20 1:27 a.m.11 views

EUVD-2026-38104

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the viewpage function in all versions up to, and including, 1.5.1. This makes it possible for unauthenticated attackers to delete...

8.1CVSS6.7AI score0.00662EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/20 12:46 a.m.9 views

EUVD-2026-38103

Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits a heap OOB read in printattribute UTF8STRING path. printattribute copies a UTF8STRING ASN.1 attribute value into a heap buffer sized exactly to its declared length via strncpy, leaving no NUL terminator. Downstream callers run strlen on...

6.1AI score0.00354EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:34 a.m.9 views

EUVD-2026-38095

Cap-go before 12.128.2 contains an authentication logic flaw that lets an attacker register and control an account bound to a victim's email address before that email is verified. By enabling two-factor authentication on the pre-registered account, the attacker gains control over the account...

9.3CVSS5.9AI score0.00351EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:34 a.m.7 views

EUVD-2026-38096

Capgo Cap-go/capgo before 12.128.2 contains an improper access control vulnerability in the SECURITY DEFINER PostgREST RPC function public.recordbuildtime, which is granted to the anon role and callable with only the public Supabase publishable sbpublishable anon key. An unauthenticated attacker...

8.7CVSS6AI score0.00242EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:34 a.m.8 views

EUVD-2026-38094

Capgo before 12.128.2 contains a flaw in the Enforce Password Policy feature: after a Super Admin enables the policy and successfully changes their password to a compliant one, the backend does not update the password-compliance state. As a result, the backend continues to treat the account as...

6.9CVSS5.9AI score0.00299EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:34 a.m.8 views

EUVD-2026-38097

The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.29. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to...

9.8CVSS6AI score0.00625EPSS
Exploits1References4
EUVD
EUVD
added 2026/06/20 12:34 a.m.8 views

EUVD-2026-38092

Cap-go before 12.128.2 contains an authentication bypass vulnerability in OTP verification that allows attackers to bypass email verification by modifying server responses. Attackers can intercept OTP verification requests and manipulate HTTP responses to falsely mark verification successful,...

9.4CVSS5.9AI score0.00188EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:34 a.m.8 views

EUVD-2026-38093

Capgo before 12.128.2 contains a cross-tenant authorization bypass vulnerability in PostgREST endpoints that allows org-scoped read API keys to access other tenants' webhook secrets and delivery logs. Attackers can query the webhooks and webhookdeliveries endpoints to exfiltrate HMAC signing...

7.1CVSS5.9AI score0.00241EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/20 12:14 a.m.8 views

EUVD-2026-38101

Capgo before 12.128.12 allows authenticated users to modify their mutable public.users.email to arbitrary addresses, which the SSO provisioning endpoint trusts as an account-merge key. Attackers can pre-position their account with a victim's corporate SSO email, causing the provision-user endpoin...

8.7CVSS6AI score0.00228EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 12:14 a.m.7 views

EUVD-2026-38102

Capgo before 12.128.2 contains a scope escalation vulnerability in the POST /functions/v1/apikey endpoint that allows app-limited API keys to mint unrestricted keys by setting empty limits. Attackers with a compromised app-limited key can create an unrestricted key with org-wide access to resourc...

8.8CVSS5.9AI score0.00251EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 12:14 a.m.9 views

EUVD-2026-38100

Capgo before 12.128.2 contains an information disclosure vulnerability in Supabase PostgREST RPC endpoints istrialorg and ispayingorg that allows unauthenticated attackers to enumerate organizations and disclose billing status using the public sbpublishable key. Attackers can invoke these endpoin...

8.7CVSS5.9AI score0.00302EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 12:14 a.m.8 views

EUVD-2026-38099

Capgo before 12.128.2 contains an authorization bypass vulnerability in the public.upsertversionmeta SECURITY DEFINER function exposed via PostgREST RPC, allowing unauthenticated attackers to insert arbitrary rows into versionmeta for any appid. Attackers can exploit this by calling the RPC...

6.9CVSS6AI score0.00235EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/20 12:14 a.m.9 views

EUVD-2026-38098

Capgo before 12.128.2 contains an authentication logic flaw: a user with permission to manage team or organization security settings can enable mandatory two-factor authentication for all team members without first enabling 2FA on their own account. The application fails to verify the initiator's...

5.1CVSS5.9AI score0.00206EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 10:10 p.m.10 views

EUVD-2026-38003

Cloudflare Quiche: Use-after-free in connection ID iterator FFI functions...

5.6CVSS5.8AI score0.0017EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 8:51 p.m.11 views

EUVD-2026-36641

Grafana Operator: Privilege escalation from namespace admin to cluster admin via GrafanaDashboard jsonnetLib fileName...

6.4CVSS5.8AI score0.00361EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 8:29 p.m.11 views

EUVD-2026-38091

Url redirection to untrusted site 'open redirect' in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate privileges over a network...

8.8CVSS5.8AI score0.00408EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:29 p.m.7 views

EUVD-2026-38090

Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:28 p.m.7 views

EUVD-2026-38089

Initialization of a resource with an insecure default in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to disclose information over a network...

6.5CVSS5.8AI score0.00514EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.8 views

EUVD-2026-38088

Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.9AI score0.005EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.8 views

EUVD-2026-38086

Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network...

10CVSS5.9AI score0.00562EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.9 views

EUVD-2026-38087

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network...

6.5CVSS5.9AI score0.00399EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.7 views

EUVD-2026-38085

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an authorized attacker to perform spoofing over a network...

8.8CVSS5.8AI score0.00282EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:26 p.m.6 views

EUVD-2026-38084

Quarkus is a Java framework for building cloud-native applications. Prior to versions 3.37.0, 3.36.3, 3.33.2.1, 3.33.3, 3.27.4.1, 3.27.5, and 3.20.6.2, Quarkus HTTP path-based authorization policies can be bypassed using encoded semicolons %3B to smuggle matrix parameters past the security layer,...

8.8CVSS5.8AI score0.00451EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/19 8:19 p.m.6 views

EUVD-2026-38082

Authelia is an open-source authentication and authorization server providing two-factor authentication and single sign-on SSO for applications via a web portal. In versions 4.38.0 through 4.39.19, when a user authenticates via Basic Auth i.e via the Authorization header with the Basic scheme on t...

6.3CVSS6AI score0.00308EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 8:16 p.m.8 views

EUVD-2026-38081

Kestra is an open-source, event-driven orchestration platform. Prior to versions 1.3.19, 1.2.19, 1.1.19, and 1.0.43, Kestra task inputFiles writes rendered file names directly under the task working directory. When a flow forwards untrusted execution or webhook data into an inputFiles file name, ...

6.5CVSS6AI score0.00308EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:12 p.m.7 views

EUVD-2026-38080

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/19 8:9 p.m.8 views

EUVD-2026-38079

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted H.265 bitstream can cause an out-of-bounds array write in decodercontext::processreferencepictureset libde265/decctx.cc:1376. The root cause is a missing aggregate bound check on predicted...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/19 7:53 p.m.9 views

EUVD-2026-38078

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 7:46 p.m.6 views

EUVD-2026-38077

gin-vue-admin is an AI-assisted basic development platform. In version 2.9.1, an authenticated attacker with access to the code-generation feature and MCP management interface can exploit this vulnerability by injecting attacker-controlled Go source code through POST /autoCode/addFunc, and then...

8.7CVSS6.6AI score0.0047EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 7:38 p.m.6 views

EUVD-2026-38076

DevGuard provides vulnerability management for the full software supply chain. Prior to 1.4.2, on a DevGuard API instance with one or more public assets, any authenticated user — including users from a different organization with no membership or role in the affected org/project — can create,...

7.1CVSS5.9AI score0.00235EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 7:35 p.m.13 views

EUVD-2026-36542

parse-server: Relation $relatedTo query bypasses protectedFields and owning-object ACL...

6.9CVSS5.8AI score0.00276EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/19 7:35 p.m.18 views

EUVD-2026-36540

parse-server: Endpoints /login and /verifyPassword disclose MFA secrets and protected fields when User get is denied...

5.9CVSS5.8AI score0.00251EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/19 7:35 p.m.11 views

EUVD-2026-36539

parse-server: Stored XSS via trailing-dot filename bypassing file upload extension blocklist...

2.1CVSS5.8AI score0.00281EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/19 7:34 p.m.10 views

EUVD-2026-36537

parse-server: Server option routeAllowList is bypassable through batch sub-requests...

6.9CVSS5.8AI score0.00342EPSS
Exploits0References3
Total number of security vulnerabilities417990