Improper Privilege Management

typo3/cms is vulnerable to unauthorized access vulnerability. The vulnerability is due to insufficient access control, allowing editors with access to the file metadata table to change, create, or delete metadata of files outside their authorized file mounts...

Session Fixation

typo3/cms is vulnerable to Session Fixation. The vulnerability is due to the session ID not being changed upon authentication, which allows attackers to generate a valid session ID and trick users into using it, potentially gaining access to authenticated sessions...

Sensitive Information Disclosure

.NET is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the flaws in the implementation of the TlsStream within the .NET runtime, which could allow an attacker to gain unintended access to sensitive information...

Denial Of Service (DoS)

Microsoft.AspNetCore.App.Runtime is vulnerable to a Denial of Service DoS vulnerability. The vulnerability is due to a specific condition or action that allows an attacker to disrupt service availability...

Timing Attack

github.com/open-telemetry/opentelemetry-collector-contrib is vulnerable to Timing Attack. The vulnerability is due to the improper implementation of non-constant time string comparison in the bearertokenauth server authenticator, which allows attackers to infer the correct bearer token based on...

Prototype Pollution

@bunt/app is vulnerable to Prototype Pollution. The vulnerability is due to inadequate parsing and validation of input data via packages qs.ts, which allows arbitrary property injection into objects...

Command Injection

sequenceserver is vulnerable to Command Injection. The vulnerability is due to improper sanitization of user input and query parameters, allowing attackers to inject and execute shell commands...

Cross Site Scripting

typo3/cms is vulnerable to Cross Site Scripting. The vulnerability is caused due to a missing sanitization while rendering web page on the browser. This can lead to an authorized editors insert javascript commands by using the url scheme javascript:...

Brute Force Protection Bypass

typo3/cms is vulnerable to Brute Force Protection Bypass. The vulnerability is caused due to a flaw which can result in bypassing a brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This can lead to unathorized access to the system...

Improper Access Control

Apache DolphinScheduler is vulnerable to Improper Access Control. The vulnerability is due to there is no proper validation on access controls that allowing authenticated users to illegally access additional resource files...

Cross Site Scripting (XSS)

typo3/cms is vulnerable to Cross Site Scripting XSS. The vulnerability is caused due to a failure in validating the HTTP host-header. This can lead to host header spoofing...

Improper Input Validation

Apache DolphinScheduler is vulnerable to Improper Input Validation. The vulnerability is due to improper input validation allowing an authenticated user to execute arbitrary, unsandboxed JavaScript on the server...

Cache Poisoning

typo3/cms is vulnerable to Cache Poisoning. The vulnerability is caused due to using the configuration option config.prefixLocalAnchors with values "all" or "cached". This can lead to unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the...

Server-Side Request Forgery (SSRF)

Axios is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to unexpected behavior where requests for path-relative URLs are processed as protocol-relative URLs...

Path Traversal

typo3/cms is vulnerable to Path Traversal. The vulnerability is caused due to a missing path validation while accessing the PHP scripts for testing purposes. This can lead to disclosure of the absolute server path to the TYPO3 installation...

Missing Release Of Resource After Effective Lifetime

github.com/apache/incubator-answer is vulnerable to Missing Release of Resource after Effective Lifetime. The vulnerability is due to improper handling of password reset links. An attacker can misuse or hijack the link by accessing it within its validity period, even after a new link has been...

Improper Access Control

github.com/clastix/kamaji is vulnerable to Improper Access Control. The vulnerability is due to inadequate use of an "open at the top" range definition in RBAC for etcd roles, which allows some TCPs API servers to read, write, and delete data of other control planes...

Improper Validation Of Integrity Check Value

org.apache.sshd, sshd-common is vulnerable for Improper Validation Of Integrity Check Value. The vulnerability is due to the possibility of packet interception, where an attacker can intercept traffic between the client and server and drop certain packets from the stream, potentially downgrading ...

Resource Leakage

github.com/apache/incubator-answer is vulnerable to Resource Leakage. The vulnerability is due to improper management of the password reset link's validity, allowing it to remain active and reusable even after it has been used...

Path Traversal

Streamlit is vulnerable to a Path Traversal. The vulnerability is due to improper handling of file paths in the static file sharing feature of Streamlit on Windows systems, which allows an attacker to traverse directories and access the password hash of the Windows user running Streamlit...

Path Traversal

Filament Excel is vulnerable to Path Traversal. The vulnerability is due to improper validation of file paths in the export download route '/filament-excel/path', allowing the use of ../ to navigate directories and access unauthorized files...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to disallow the modification of local channels by a remote, when shared channels are enabled. This allows a malicious remote user to make an arbitrary local channel...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to validate the source of sync messages and only allow the correct remote IDs. This allows a malicious remote user to set arbitrary RemoteId values for synced users and...

Unauthorized Access

apacheairflow is vulnerable to Unauthorized Access. The vulnerability is due to the lack of default authentication in the Experimental API, which allows API requests without verification, resulting in sensitive information exposure...

Uncontrolled Resource Consumption

github.com/CosmWasm/wasmd is vulnerable to Uncontrolled Resource Consumption. The vulnerability is due to the ability to add a large number of addresses in multiple message types, which may lead to unexpected resource consumption in ValidateBasic...

Authorization Bypass

github.com/openfga/openfga is vulnerable to Authorization Bypass. The vulnerability is due to improper handling of authorization logic with 'but not' and 'from' expressions and a userset, allowing an attacker to bypass authorization checks and gain unauthorized access to resources...

Improper Restriction Of Power Consumption

github.com/cosmwasm/wasmvm is vulnerable to Improper Restriction of Power Consumption. The vulnerability is due to inaccurate gas benchmarks, allowing malicious contracts to consume up to 10 times the expected execution time, which can temporarily DoS a chain...

Path Traversal

aiohttp is vulnerable to Path Traversal. The vulnerability is due to improper handling of symbolic links in compressed file variants .gz or .br extensions, which can allow access outside the root directory when followsymlinks=False is set...

Incorrect Error Handling

github.com/mattermost/mattermost-server is vulnerable to Incorrect Error Handling. The vulnerability is caused due to a failure to properly safeguard an error handling. This allows an attacker to permanently delete local data by abusing dangerous error handling, when share channels were enabled...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to disallow users to set their own remote username when shared channels are enabled. This allows a user on a remote to set their remote username prop to an arbitrary...

Server-Side Template Injection (SSTI)

shopware/core and shopware/platform is vulnerable to Server-Side Template Injection SSTI. The vulnerability is due to improper escaping of the swsilentfeaturecall parameter in Twig templates, allowing execution of code through unescaped feature flag names...

Cross Site Scripting (XSS)

openwebui is vulnerable to Cross Site ScriptingXSS. The vulnerability is due to the language model executing arbitrary JavaScript as a result of a maliciously crafted prompt...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to properly restrict channel creation. This allows a malicious remote user to create arbitrary channels, when shared channels were enabled...

Access Control Bypass

Shopware is vulnerable to Access Control Bypass. The vulnerability is due to improper handling of ManyToManyAssociationField in the Criteria processing via SalesChannelRepository.php, which allows attackers to bypass protections and potentially access or manipulate data through extensions...

SQL Injection

shopware/core and shopware/platform is vulnerable to SQL Injection. The vulnerability is due to insufficient validation and improper handling of user input in the name field of the aggregations object in the Shopware API, allowing attackers to inject and execute arbitrary SQL queries...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable Improper Access Control. The vulnerability is caused due to a failure in disallowing the modification of local users when syncing users in shared channels. This allows a malicious remote user to overwrite an existing local user...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is due to inadequate validation when shared channels are enabled, allowing an attacker to create, update, or delete arbitrary posts in arbitrary channels...

Privilege Escalation

JupyterHub is vulnerable to Privilege Escalation. The vulnerability is due to improper management of the admin:users scope in users.py, which unintentionally allows users to elevate their privileges to full admin status...

Server-Side Template Injection

shopware/core and shopware/platform is vulnerable to Server-Side Template Injection. The vulnerability is due to improper handling of the context variable in Twig templates, allowing attackers with Administration access to execute arbitrary PHP functions or methods...

Cross-Site Scripting

concrete5/concrete5 is vulnerable to Cross-Site Scripting. The vulnerability is due to improper sanitization of input in the getAttributeSetName function, allowing an admin authenticated attacker to inject malicious code...

Arbitrary File Read

org.jenkins-ci.main, jenkins-core and org.jenkins-ci.main, remoting are vulnerable to Arbitrary File Read. The vulnerability is caused due to a missing validation on the file paths that are invoked on the controller by the agent while retrieving files using API ClassLoaderProxyfetchJar. This allo...

Improper Access Control

org.jenkins-ci.main, jenkins-core is vulnerable to Improper Access Control. The vulnerability is caused due to a missing permission check in an HTTP end point. This allows attackers with Overall/Read permission to access other users' "My Views" and attackers with global View/Configure and...

Denial Of Service (DoS)

Django is vulnerable to Denial Of Service DoS. The vulnerability is due to inadequate input validation in the floatformat template filter when processing string representations of numbers in scientific notation with large exponents, It allows an attacker to trigger excessive memory consumption,...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to properly validate that the channel that comes from the sync message is a shared channel, when shared channels are enabled. This allows a malicious remote user to add...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is caused due to a failure to properly validate synced reactions, when shared channels are enabled. This allows a malicious remote attacker to create arbitrary reactions on arbitrary posts...

Denial Of Service (DoS)

Django is vulnerable to a Denial Of Service DoS. The vulnerability is due to the urlize and urlizetrunc template filters processing very large inputs with a specific sequence of characters...

Denial Of Service (DoS)

Django is vulnerable to a Denial Of Service DoS. The vulnerability is due to the lack of validation for certain inputs with a very large number of Unicode characters in the urlize and urlizetrunc template filters, and the AdminURLFieldWidget widget. Attackers can create malicious payloads with...

SQL Injection

Django is vulnerable to SQL injection. The vulnerability is due to the QuerySet.values and valueslist functions on models with a JSONField, allowing attackers to manipulate SQL queries in column aliases via a crafted JSON object key passed as an argument...

Incorrect Handling Of HTTP Headers

github.com/envoyproxy/envoy is vulnerable to Incorrect Handling of HTTP Headers. The vulnerability is due to setCopy header map API not replacing all existing occurrences of a non-inline header and only considering the first value when multiple header values are present. This allows an attackers ...

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is due to the failure to disallow unsolicited invites when shared channels are enabled, This allowing an attacker to send an invite with the ID of an existing local channel, causing that local...