Search Vulnerabilities

CI4MS: Account Deactivation Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)

CVE-2026-34570

CI4MS: Account Deletion Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)

CVE-2026-27007

OpenClaw's sandbox config hash sorted primitive arrays and suppressed needed container recreation

Feb 19, 2026

CVE-2013-10031

Plack::Middleware::Session versions before 0.17 for Perl may be vulnerable to HMAC comparison timing attacks

Dec 9, 2025

CVE-2022-39308

GoCD API authentication of user access tokens subject to timing attack during comparison

Oct 14, 2022

Searching...

Filters

5 vulnerabilities found

CVE-2026-34572

CI4MS: Account Deactivation Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)

CVE-2026-34570

CI4MS: Account Deletion Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)

CVE-2026-27007

OpenClaw's sandbox config hash sorted primitive arrays and suppressed needed container recreation

Feb 19, 2026

CVE-2013-10031

Plack::Middleware::Session versions before 0.17 for Perl may be vulnerable to HMAC comparison timing attacks

Dec 9, 2025

CVE-2022-39308