Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
nimiq-transaction: UpdateValidator transactions allows voting key change without proof-of-knowledge
ASP.NET Core Elevation of Privilege Vulnerability
OpenClaw 2026.3.22 < 2026.3.31 - Forged Nostr DM Pairing State Creation via Signature Verification Bypass
Payment Gateway for Redsys & WooCommerce Lite <= 7.0.0 - Improper Verification of Cryptographic Signature to Unauthenticated Payment Status Manipul...
XQUIC Improper STREAM Frame Validation in Initial/Handshake Packets
A vulnerability has been identified in SINEC NMS (All versions < V4
Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration
wc_VerifyEccsiHash missing sanity check
bsv-sdk and bsv-wallet persist unverified certifier signatures in acquire_certificate (direct and issuance paths)
LightRAG has a JWT Algorithm Confusion Vulnerability in LightRAG API
Rust-rpm-sequoia: rust-rpm-sequoia: denial of service via crafted rpm file during signature verification
OneUptime SSO: Multi-Assertion Identity Injection via Decoupled Signature Verification
Convoy: JWT Signature Verification Bypass Allows Authentication as Arbitrary Users
jose vulnerable to untrusted JWK header key acceptance during signature verification
Zebra has a Consensus Failure due to Improper Verification of V5 Transactions
RAUC: Improper Signing of Plain Bundles Exceeding 2 GiB
Botan: Missing OCSP Response Signature Verification Allows MitM Certificate Revocation Bypass
OpenOLAT: Authentication bypass via forged JWT in OIDC implicit flow
nginx-ui Backup Restore Allows Tampering with Encrypted Backups
OpenClaw < 2026.3.12 - Forged Event Injection via Feishu Webhook Verification Token
Showing 1 - 20 of 1,000+ results