Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
PraisonAI before 4.6.78 Missing Webhook Signature Verification
PraisonAI before 4.6.78 Authentication Bypass via Host Header Spoofing
n8n - Authentication Bypass in Chat Trigger Node
Authentication Bypass in Navigator and Blue Planet Products
`jwt` (Ruby gem) - empty-key HMAC bypass
Symfony: Mailjet Mailer Webhook Parser Never Verifies the Configured Secret — Unauthenticated Webhook Event Injection
Remote Access Management service/API (RPC server) Elevation of Privilege Vulnerability
Windows Admin Center Elevation of Privilege Vulnerability
Windows Admin Center Information Disclosure Vulnerability
Windows Admin Center Elevation of Privilege Vulnerability
Azure Spring Apps Elevation of Privilege Vulnerability
waooAI waoowaoo Internal Task Header api-auth.ts requireProjectAuthLight improper authentication
Missing authentication for Bluetooth communication
will-moss Isaiah Websocket Connection Authentication main.go improper authentication
RafyMrX TOKO-ONLINE-ROTI missing authentication
miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.7.0 - Unauthenticated Authentication Bypass to Administrator Account...
RabbitMQ: AMQP 1.0, AMQP 0-9-1, Stream Protocol loopback enforcement can lead to remote guest sessions due to listener-address loopback checks
Logto: Account Center MFA management step-up bypass via WebAuthn registration verification
Prowler: SAML Domain Claiming Enables Cross-Tenant Account Takeover
ZITADEL: Auto-linking by email: IdP-side email verification is not checked
Showing 1 - 20 of 1,000+ results