Known Vulnerabilities for User Role by BestWebSoft
Listed below are 3 of the newest known vulnerabilities associated with "User Role" by "BestWebSoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57520 json | Bitwarden Server before 2026.5.0 contains a privilege escalation vulnerability that allows authenticated Custom users with Ma... | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-56779 json | MaxKB before 2.10.0 contains a server-side request forgery vulnerability in tool creation and update endpoints that allows au... | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-56423 json | MISP Core contained broken access-control checks in the bulk deletion flows for Event Reports and Sharing Groups. The affect... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-55762 json | Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6... | Not Provided | 2026-06-24 | 2026-06-25 |
| CVE-2026-55413 json | ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agent... | Not Provided | 2026-06-25 | 2026-06-25 |
| CVE-2026-54322 json | Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0,... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54320 json | Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.184.0,... | Not Provided | 2026-06-23 | 2026-06-24 |
| CVE-2026-54006 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-53911 json | Cerebrate before version 1.37 allowed the id primary key field to be supplied through request input during CRUD edit operatio... | Not Provided | 2026-06-11 | 2026-06-11 |
| CVE-2026-53608 json | ApostropheCMS is an open-source Node.js content management system. Versions up to and including 1.4.2 of the `@apostrophecms/... | Not Provided | 2026-06-12 | 2026-06-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bestwebsoft | User Role | 1.6.1 | |||
| Application | Bestwebsoft | User Role | 1.6.0 | |||
| Application | Bestwebsoft | User Role | 1.5.9 | |||
| Application | Bestwebsoft | User Role | 1.5.8 | |||
| Application | Bestwebsoft | User Role | 1.5.7 | |||
| Application | Bestwebsoft | User Role | 1.5.6 | |||
| Application | Bestwebsoft | User Role | 1.5.5 | |||
| Application | Bestwebsoft | User Role | 1.5.4 | |||
| Application | Bestwebsoft | User Role | 1.5.3 | |||
| Application | Bestwebsoft | User Role | 1.5.2 | |||
| Application | Bestwebsoft | User Role | 1.5.1 | |||
| Application | Bestwebsoft | User Role | 1.5.0 | |||
| Application | Bestwebsoft | User Role | 1.4.9 | |||
| Application | Bestwebsoft | User Role | 1.4.8 | |||
| Application | Bestwebsoft | User Role | 1.4.7 | |||
| Application | Bestwebsoft | User Role | 1.4.6 | |||
| Application | Bestwebsoft | User Role | 1.4.5 | |||
| Application | Bestwebsoft | User Role | 1.4.4 | |||
| Application | Bestwebsoft | User Role | 1.4.3 | |||
| Application | Bestwebsoft | User Role | 1.4.2 |