High CVE-2026-11369 The Comment API (GET /api/Comment and POST /api/Comment) in the affected application fails to perform authorization checks to verify that the requesting user has access to the object identified by the relatedObjectId. This Insecure Direct Object Reference (IDOR) vulnerability...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[High] CVE-2026-11369 – The Comment API (GET /api/Comment and POST /api/Comment) in the affected applica...

VERWANDTEARTIKEL

[Medium] CVE-2026-48092 – 7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26...

[High] CVE-2026-48095 – 7-Zip is a file archiver with a high compression ratio. Versions 26.00 and prior...

[Critical] CVE-2026-6207 – Observable response discrepancy vulnerability in HAVELSAN Inc. Geographic Tracki...

[Critical] CVE-2026-6208 – Authorization bypass through User-Controlled key vulnerability in HAVELSAN Inc. ...

[Critical] CVE-2026-6209 – Improper Access Control, Missing Authorization vulnerability in HAVELSAN Inc. Ge...

[Unknown] CVE-2026-38579 – Multiple reflected Cross-Site Scripting (XSS) vulnerabilities in damasac thaipal...