CVE ID :CVE-2026-56782 Published : June 29, 2026, 5:16 p.m. | 1 hour, 56 minutes ago Description :Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoints that allows unauthenticated attackers to access protected functionality when...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-56782 - Gorse - Unauthenticated Database Dump and Restore via /api/dump and /api/restore Endpoints

VERWANDTEARTIKEL

CVE-2026-57999 - luci-app-tailscale-community - Command Injection via tailscale.do_login RPC

CVE-2026-58000 - luci-proto-openvpn - Command Injection via cl_meta Parameter in generateKey

CVE-2026-11720 - Path Traversal in googleapis/mcp-toolbox HTTP Tool URL Builder

CVE-2026-57960 - Hi.Events 1.9.0 - Unauthenticated Attendee PII Exposure via Check-in List short_id

CVE-2026-57955 - SigNoz 0.130.1 - SQL Injection in Alert History Endpoints via Rule ID Parameter

CVE-2026-57950 - ruoyi-vue-pro - Incorrect Permission Namespace in ErpSaleOrderController