Search Vulnerabilities

Caching of Authentication allows Authentication Bypass between users in qSnapper

CVE-2026-41048

Caching of Authentication allows Authentication Bypass in qSnapper

CVE-2026-46389

UDS Identity Config has a client authentication bypass in `ClientIdAndKubernetesSecretAuthenticator`

Jun 5, 2026

CVE-2026-8922

Org.keycloak/keycloak-services: keycloak: org.keycloak.protocol.oidc: security flaw in org.keycloak/keycloak-services

May 19, 2026

CVE-2026-41103

Microsoft SSO Plugin for Jira & Confluence Elevation of Privilege Vulnerability

May 12, 2026

CVE-2026-43640

Bitwarden Server < 2026.4.1 Authentication Bypass via SCIM API Key

May 11, 2026

CVE-2026-33190

CoreDNS TSIG authentication bypass on encrypted DNS transports

May 5, 2026

CVE-2026-27656

Account Takeover via Substring Matching in OpenID Connect Authentication

Mar 25, 2026

CVE-2026-32953

Tillitis: TKey Client has an Error in Protocol Implementation

Mar 20, 2026

CVE-2026-29515

MiCode FileExplorer SwiFTP Server Authentication Bypass

Mar 11, 2026

CVE-2019-25436

Sricam DeviceViewer 3.12.0.1 Password Change Security Bypass

Feb 20, 2026

CVE-2026-0999

Authentication bypass via userID login when email and username login are disabled

Feb 16, 2026

CVE-2025-14510

ABB Ability OPTIMAX Authentication Bypass in Single-Sign On

Jan 16, 2026

CVE-2025-4676

Authentication bypass by brute forcing Authentication Headers

Jan 7, 2026

CVE-2025-14273

Mattermost Jira plugin user spoofing enables Jira request forgery.

Dec 22, 2025

CVE-2025-66489

Cal.com Authentication Bypass via bad TOTP + password checks

CVE-2025-13390

WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover

CVE-2025-12421

Account Takeover via Code Exchange Endpoint

CVE-2025-12419

Account takeover on OAuth/OpenID-enabled servers

CVE-2025-53782

Microsoft Exchange Server Elevation of Privilege Vulnerability

Oct 14, 2025

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2026-41049

Caching of Authentication allows Authentication Bypass between users in qSnapper

CVE-2026-41048

Caching of Authentication allows Authentication Bypass in qSnapper

CVE-2026-46389

UDS Identity Config has a client authentication bypass in `ClientIdAndKubernetesSecretAuthenticator`

Jun 5, 2026

CVE-2026-8922

Org.keycloak/keycloak-services: keycloak: org.keycloak.protocol.oidc: security flaw in org.keycloak/keycloak-services

May 19, 2026

CVE-2026-41103

Microsoft SSO Plugin for Jira & Confluence Elevation of Privilege Vulnerability

May 12, 2026

CVE-2026-43640

Bitwarden Server < 2026.4.1 Authentication Bypass via SCIM API Key

May 11, 2026

CVE-2026-33190

CoreDNS TSIG authentication bypass on encrypted DNS transports

May 5, 2026

CVE-2026-27656

Account Takeover via Substring Matching in OpenID Connect Authentication

Mar 25, 2026

CVE-2026-32953

Tillitis: TKey Client has an Error in Protocol Implementation

Mar 20, 2026

CVE-2026-29515

MiCode FileExplorer SwiFTP Server Authentication Bypass

Mar 11, 2026

CVE-2019-25436

Sricam DeviceViewer 3.12.0.1 Password Change Security Bypass

Feb 20, 2026

CVE-2026-0999

Authentication bypass via userID login when email and username login are disabled

Feb 16, 2026

CVE-2025-14510

ABB Ability OPTIMAX Authentication Bypass in Single-Sign On

Jan 16, 2026

CVE-2025-4676

Authentication bypass by brute forcing Authentication Headers

Jan 7, 2026

CVE-2025-14273

Mattermost Jira plugin user spoofing enables Jira request forgery.

Dec 22, 2025

CVE-2025-66489

Cal.com Authentication Bypass via bad TOTP + password checks

CVE-2025-13390

WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover

CVE-2025-12421

Account Takeover via Code Exchange Endpoint

CVE-2025-12419

Account takeover on OAuth/OpenID-enabled servers

CVE-2025-53782