B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-52782 - OpenProject: IDOR through /projects/<A>/settings/project_storages/<A_ps_id> via PATCH parameter "storages_project_storage[project_folder_id]" leads to Access to Unauthorized Resources

CVE ID :CVE-2026-52782 Published : June 26, 2026, 6:59 p.m. | 4 hours, 12 minutes ago Description :OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is an IDOR through /projects//settings/project_storages/ via PATCH parameter...

#Sicherheitslücke #Update
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-56414 - H.VIEW HV-500S6 IP Camera Unrestricted Upload of File with Dangerous Type

2026-06-27 Mittel

CVE-2026-55975 - H.VIEW HV-500S6 IP Camera OS Command Injection

2026-06-26 Mittel

CVE-2026-31928 - Daktronics Controller Firmware Use of Hard-coded Credentials

2026-06-26 Mittel

CVE-2026-33560 - Daktronics Controller Firmware Unrestricted Upload of File with Dangerous Type

2026-06-26 Mittel

CVE-2026-28701 - Daktronics Controller Firmware Path Traversa

2026-06-26 Mittel

CVE-2026-49869 - Kestra: Unauthenticated Remote Code Execution via Authentication Bypass in `AuthenticationFilter`

2026-06-26 Mittel