Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
SenseLive X3050 Authentication bypass using an alternate path or channel
OAuth2 Proxy has an Authentication Bypass via Fragment Confusion in skip_auth_routes and skip_auth_regex
ChurchCRM: Authentication Bypass in `/api/public/user/login` Allows Bypass of 2FA and Account Lockout
Vault KVv2 Metadata and Secret Deletion Policy Bypass Denial-of-Service
Authentication Bypass
Visa Acceptance Solutions <= 2.1.0 - Unauthenticated Authentication Bypass via Billing Email
OpenClaw < 2026.3.25 - DM Pairing Bypass via Legacy Card Callbacks
OpenClaw < 2026.3.25 - Telegram DM-Scoped Inline Button Callback Authorization Bypass
OpenClaw < 2026.3.25 - Authorization Bypass in Microsoft Teams Feedback Invoke
OpenClaw < 2026.3.25 - Direct Message Policy Bypass via Verification Notices
OpenClaw < 2026.3.25 - Authorization Bypass in Group Reactions via requireMention Bypass
OpenClaw < 2026.3.23 - Authentication Bypass via Local-Direct Requests in Canvas Gateway
badlogic pi-mono pi-mom Slack Bot slack.ts authentication bypass
goshs has Auth Bypass via Share Token
signalk-server: Privilege Escalation by Admin Role Injection via /enableSecurity
GINA State Confusion Account Takeover
Sulu checks fix permissions for subentities endpoints
Moby: AuthZ plugin bypass with oversized request body
Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without a...
OpenID Connect / OAuth client - Moderately critical - Access bypass - SA-CONTRIB-2026-026
Showing 1 - 20 of 1,000+ results