Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Improper access control vulnerability has been discovered in OpenText™ Filr.
IBM Engineering Requirements Management DOORS Next could allow an authenticated user to access and modify data beyond authorized permissions
Authorization Bypass in LXD GET /1.0/certificates Endpoint
AI ChatBot with ChatGPT and Content Generator by AYS <= 2.7.5 - Missing Authorization to Unauthenticated API Key Modification
Sim Studio AI - Unauthenticated OAuth Token Theft
Sim Studio AI - MongoDB SSRF and Arbitrary Document Deletion
wpForo Forum 2.4.14 Privilege Escalation via Role Synchronization Handler
wpForo Forum 2.4.14 Missing Authorization via Topic Management Form Handlers
wpForo Forum 2.4.14 Missing Authorization via Topic Close AJAX Handler
wpForo Forum 2.4.14 Missing Authorization via Post Approval AJAX Handler
Statamic's missing authorization allows access to email addresses
openDCIM <= 23.04 Missing Authorization in install.php
WeGIA lacks authentication verification in adicionar_tipo_docs_atendido.php
phpMyFAQ Allows Unauthenticated Account Creation via WebAuthn Prepare Endpoint
Seerr missing authentication on pushSubscription endpoints
Initiative Allows Unauthenticated Access to Uploaded Documents via Public /uploads/ Endpoint
IDOR in GraphQL userCollection Query Exposes Other Users' Private Collections
ActualBudget missing authorization in sync endpoints allows cross-user budget file access in multi-user mode
Weblate: Missing access control for the AddonViewSet API exposes all addon configurations
Discourse doesn't validate destination topic when moving posts
Showing 1 - 20 of 1,000+ results