Search Vulnerabilities

Sentry kernel has incomplete ownership check for IRQ line manipulation

Improper S3 ownership verification in Bedrock AgentCore Starter Toolkit

TSPortal: Anyone can forge self-deletion requests of any user

OpenClaw: Process Safety - Unvalidated PID Kill via SIGKILL in Process Cleanup

Pterodactyl Panel Allows Cross-Node Server Configuration Disclosure via Remote API Missing Authorization

Ansible-lightspeed: broken object level authorization leading to cross-user ai conversation context injection in ansible lightspeed api

An ownership verification issue in the Virtual Desktop preview page in the Research and Engineering Studio (RES) on AWS before version 2025

IBM Business Automation Insights unverified ownership

Secret data extraction via elfinder

Dell ThinOS 10, versions prior to 2508_10

TYPO3 CMS Vulnerable to Privilege Escalation to System Maintainer

Improper Authorization in /user/namespace/{namespace}/details

OpenVPN plug-ins on Windows with OpenVPN 2

Zemana AntiLogger v2.74.204.664 - Arbitrary Process Termination

On affected 7130 Series FPGA platforms running MOS and recent versions of the MultiAccess FPGA, application of ACL’s may result in incorrect operat...

Kiwi TCMS may allow user to update email address to unverified one

No verification of commits origin in github-action-merge-dependabot

Workreap theme < 2.2.2 - Missing Authorization Checks in Ajax Actions

Workreap theme < 2.2.2 - Multiple CSRF + IDOR Vulnerabilities

Kubernetes man in the middle using LoadBalancer or ExternalIPs