Total
1315 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-3852 | 1 Weseek | 1 Growi | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
growi is vulnerable to Authorization Bypass Through User-Controlled Key
|
|||||
| CVE-2021-3813 | 1 Chatwoot | 1 Chatwoot | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Improper Privilege Management in GitHub repository chatwoot/chatwoot prior to v2.2.
|
|||||
| CVE-2021-3380 | 1 Height8tech | 1 H8 Ssrms | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Insecure direct object reference (IDOR) vulnerability in ICREM H8 SSRMS allows attackers to disclose sensitive information via the Print Invoice Functionality.
|
|||||
| CVE-2021-39934 | 1 Gitlab | 1 Gitlab | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
Improper access control allows any project member to retrieve the service desk email address in GitLab CE/EE versions starting 12.10 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2.
|
|||||
| CVE-2021-39916 | 1 Gitlab | 1 Gitlab | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
Lack of an access control check in the External Status Check feature allowed any authenticated user to retrieve the configuration of any External Status Check in GitLab EE starting from 14.1 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2.
|
|||||
| CVE-2021-39889 | 1 Gitlab | 1 Gitlab | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
In all versions of GitLab EE since version 14.1, due to an insecure direct object reference vulnerability, an endpoint may reveal the protected branch name to a malicious user who makes a crafted API call with the ID of the protected branch.
|
|||||
| CVE-2021-39225 | 1 Nextcloud | 1 Deck | 2024-11-21 | 5.5 MEDIUM | 8.1 HIGH |
|
Nextcloud is an open-source, self-hosted productivity platform. A missing permission check in Nextcloud Deck before 1.2.9, 1.4.5 and 1.5.3 allows another authenticated users to access Deck cards of another user. It is recommended that the Nextcloud Deck App is upgraded to 1.2.9, 1.4.5 or 1.5.3. There are no known workarounds aside from upgrading.
|
|||||
| CVE-2021-38624 | 1 Microsoft | 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Windows Key Storage Provider Security Feature Bypass Vulnerability
|
|||||
| CVE-2021-38362 | 1 Rsa | 1 Archer | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
In RSA Archer 6.x through 6.9 SP3 (6.9.3.0), an authenticated attacker can make a GET request to a REST API endpoint that is vulnerable to an Insecure Direct Object Reference (IDOR) issue and retrieve sensitive data.
|
|||||
| CVE-2021-37777 | 1 Gilacms | 1 Gila Cms | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Gila CMS 2.2.0 is vulnerable to Insecure Direct Object Reference (IDOR). Thumbnails uploaded by one site owner are visible by another site owner just by knowing the other site name and fuzzing for picture names. This leads to sensitive information disclosure.
|
|||||
| CVE-2021-37709 | 1 Shopware | 1 Shopware | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Shopware is an open source eCommerce platform. Versions prior to 6.4.3.1 contain a vulnerability involving an insecure direct object reference of log files of the Import/Export feature. Version 6.4.3.1 contains a patch. As workarounds for older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.
|
|||||
| CVE-2021-37631 | 1 Nextcloud | 1 Deck | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Deck is an open source kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. In affected versions the Deck application didn't properly check membership of users in a Circle. This allowed other users in the instance to gain access to boards that have been shared with a Circle, even if the user was not a member of the circle. It is recommended that Nextcloud Deck is upgraded to 1.5.1, 1.4.4 or 1.2.9. If you are unable to update it i ...
Show More |
|||||
| CVE-2021-37630 | 1 Nextcloud | 1 Circles | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application allowed any user to join any "Secret Circle" without approval by the Circle owner leaking private information. It is recommended that Nextcloud Circles is upgraded to 0.19.15, 0.20.11 or 0.21.4. There are no workarounds for this issue.
|
|||||
| CVE-2021-37628 | 1 Nextcloud | 1 Richdocuments | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Nextcloud Richdocuments is an open source collaborative office suite. In affected versions the File Drop features ("Upload Only" public link shares in Nextcloud) can be bypassed using the Nextcloud Richdocuments app. An attacker was able to read arbitrary files in such a share. It is recommended that the Nextcloud Richdocuments is upgraded to 3.8.4 or 4.2.1. If upgrading is not possible then it is recommended to disable the Richdocuments application.
|
|||||
| CVE-2021-37331 | 1 Bookingcore | 1 Booking Core | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
Laravel Booking System Booking Core 2.0 is vulnerable to Incorrect Access Control. On the Verifications page, after uploading an ID Card or Trade License and viewing it, ID Cards and Trade Licenses of other vendors/users can be viewed by changing the URL.
|
|||||
| CVE-2021-37215 | 1 Larvata | 1 Flygo | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
The employee management page of Flygo contains an Insecure Direct Object Reference (IDOR) vulnerability. After being authenticated as a general user, remote attacker can manipulate the user data and then over-write another employee’s user data by specifying that employee’s ID in the API parameter.
|
|||||
| CVE-2021-37214 | 1 Larvata | 1 Flygo | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
The employee management page of Flygo contains Insecure Direct Object Reference (IDOR) vulnerability. After being authenticated as a general user, remote attackers can manipulate the employee ID in specific parameters to arbitrary access employee's data, modify it, and then obtain administrator privilege and execute arbitrary command.
|
|||||
| CVE-2021-37213 | 1 Larvata | 1 Flygo | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
The check-in record page of Flygo contains Insecure Direct Object Reference (IDOR) vulnerability. After being authenticated as a general user, remote attackers can manipulate the employee ID and date in specific parameters to access particular employee’s check-in record.
|
|||||
| CVE-2021-37212 | 1 Larvata | 1 Flygo | 2024-11-21 | 5.5 MEDIUM | 5.4 MEDIUM |
|
The bulletin function of Flygo contains Insecure Direct Object Reference (IDOR) vulnerability. After being authenticated as a general user, remote attackers can manipulate the bulletin ID in specific Url parameters and access and modify bulletin particular content.
|
|||||
| CVE-2021-37184 | 1 Siemens | 1 Industrial Edge Management | 2024-11-21 | 6.8 MEDIUM | 9.8 CRITICAL |
|
A vulnerability has been identified in Industrial Edge Management (All versions < V1.3). An unauthenticated attacker could change the the password of any user in the system under certain circumstances. With this an attacker could impersonate any valid user on an affected system.
|
|||||
| CVE-2021-36874 | 1 Stylemixthemes | 1 Ulisting | 2024-11-21 | 6.5 MEDIUM | 7.1 HIGH |
|
Authenticated Insecure Direct Object References (IDOR) vulnerability in WordPress uListing plugin (versions <= 2.0.5).
|
|||||
| CVE-2021-36801 | 1 Akaunting | 1 Akaunting | 2024-11-21 | 5.5 MEDIUM | 8.1 HIGH |
|
Akaunting version 2.1.12 and earlier suffers from an authentication bypass issue in the user-controllable field, companies[0]. This issue was fixed in version 2.1.13 of the product.
|
|||||
| CVE-2021-36539 | 1 Instructure | 1 Canvas Learning Management Service | 2024-11-21 | N/A | 6.5 MEDIUM |
|
Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL (canvadoc_session_url).
|
|||||
| CVE-2021-36389 | 1 Yellowfinbi | 1 Yellowfin | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
In Yellowfin before 9.6.1 it is possible to enumerate and download uploaded images through an Insecure Direct Object Reference vulnerability exploitable by sending a specially crafted HTTP GET request to the page "MIImage.i4".
|
|||||
| CVE-2021-36388 | 1 Yellowfinbi | 1 Yellowfin | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
In Yellowfin before 9.6.1 it is possible to enumerate and download users profile pictures through an Insecure Direct Object Reference vulnerability exploitable by sending a specially crafted HTTP GET request to the page "MIIAvatarImage.i4".
|
|||||
| CVE-2021-36387 | 1 Yellowfinbi | 1 Yellowfin | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
In Yellowfin before 9.6.1 there is a Stored Cross-Site Scripting vulnerability in the video embed functionality exploitable through a specially crafted HTTP POST request to the page "ActivityStreamAjax.i4".
|
|||||
| CVE-2021-36329 | 1 Dell | 1 Emc Streaming Data Platform | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Dell EMC Streaming Data Platform versions before 1.3 contain an Indirect Object Reference Vulnerability. A remote malicious user may potentially exploit this vulnerability to gain sensitive information.
|
|||||
| CVE-2021-36032 | 1 Adobe | 2 Adobe Commerce, Magento Open Source | 2024-11-21 | 6.5 MEDIUM | 8.3 HIGH |
|
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability. An authenticated attacker can trigger an insecure direct object reference in the `V1/customers/me` endpoint to achieve information exposure and privilege escalation.
|
|||||
| CVE-2021-35337 | 1 Phone Shop Sales Management System Project | 1 Phone Shop Sales Management System | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter.
|
|||||
| CVE-2021-33981 | 1 Myfwc | 1 Fish \| Hunt Fl | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
An insecure, direct object vulnerability in hunting/fishing license retrieval function of the "Fish | Hunt FL" iOS app versions 3.8.0 and earlier allows a remote authenticated attacker to retrieve other people's personal information and images of their hunting/fishing licenses.
|
|||||
| CVE-2021-33223 | 1 Seeddms | 1 Seeddms | 2024-11-21 | N/A | 8.8 HIGH |
|
An issue discovered in SeedDMS 6.0.15 allows an attacker to escalate privileges via the userid and role parameters in the out.UsrMgr.php file.
|
|||||
| CVE-2021-32744 | 1 Collabora | 1 Online | 2024-11-21 | 5.0 MEDIUM | 9.8 CRITICAL |
|
Collabora Online is a collaborative online office suite. In versions prior to 4.2.17-1 and version 6.4.9-5, unauthenticated attackers are able to gain access to files which are currently opened by other users in the Collabora Online editor. For successful exploitation the attacker is required to guess the file identifier - the predictability of this file identifier is dependent on external file-storage implementations (this is a potential "IDOR" - Insecure Direct Object Reference - vulnerability ...
Show More |
|||||
| CVE-2021-32654 | 1 Nextcloud | 1 Nextcloud Server | 2024-11-21 | 6.4 MEDIUM | 8.1 HIGH |
|
Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to receive write/read privileges on any Federated File Share. Since public links can be added as federated file share, this can also be exploited on any public link. Users can upgrade to patched versions (19.0.11, 20.0.10 or 21.0.2) or, as a workaround, disable federated file sharing.
|
|||||
| CVE-2021-31970 | 1 Microsoft | 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Windows TCP/IP Driver Security Feature Bypass Vulnerability
|
|||||
| CVE-2021-31927 | 1 Annexcloud | 1 Loyalty Experience Platform | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
An Insecure Direct Object Reference (IDOR) vulnerability in Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to modify any existing user, including users assigned to different environments and clients. It was fixed in v2021.1.0.2.
|
|||||
| CVE-2021-29773 | 2 Ibm, Linux | 2 Security Guardium, Linux Kernel | 2024-11-21 | 5.5 MEDIUM | 5.4 MEDIUM |
|
IBM Security Guardium 10.6 and 11.3 could allow a remote authenticated attacker to obtain sensitive information or modify user details caused by an insecure direct object vulnerability (IDOR). IBM X-Force ID: 202865.
|
|||||
| CVE-2021-26024 | 1 Nagios | 2 Favorites, Nagios Xi | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable to Insecure Direct Object Reference: it is possible to create favorites for any other user account.
|
|||||
| CVE-2021-25096 | 1 Ip2location | 1 Country Blocker | 2024-11-21 | 6.4 MEDIUM | 6.5 MEDIUM |
|
The IP2Location Country Blocker WordPress plugin before 2.26.5 bans can be bypassed by using a specific parameter in the URL
|
|||||
| CVE-2021-24892 | 1 Advanced Forms Project | 1 Advanced Forms | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
Insecure Direct Object Reference in edit function of Advanced Forms (Free & Pro) before 1.6.9 allows authenticated remote attacker to change arbitrary user's email address and request for reset password, which could lead to take over of WordPress's administrator account. To exploit this vulnerability, an attacker must register to obtain a valid WordPress's user and use such user to authenticate with WordPress in order to exploit the vulnerable edit function.
|
|||||
| CVE-2021-24840 | 1 Codesupply | 1 Squaretype | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retrieved via a crafted request.
|
|||||