Known Vulnerabilities for Amr Users by Anmari
Listed below are 2 of the newest known vulnerabilities associated with "Amr Users" by "Anmari".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59234 json | Authorization Bypass Through User-Controlled Key (CWE-639) in CalendarDeleteEventController (app/Http/Controllers/Calendar/Ca... | Not Provided | 2026-07-03 | 2026-07-03 |
| CVE-2026-59102 json | Forgejo before 15.0.3 contains a stored cross-site scripting vulnerability that allows authenticated attackers to execute arb... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-59100 json | LobeChat through 2.2.9 contains a broken object level authorization vulnerability that allows authenticated attackers to acce... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-59098 json | LobeChat through 2.2.9 contains a broken access control vulnerability in the retrieval-augmented-generation semantic search f... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-59093 json | Weaviate before 1.38.0 does not verify that a principal performing an RBAC role assignment holds the permissions granted by t... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-58593 json | NodeBB does not bind the claimed author of an inbound ActivityPub object to the authenticated remote actor. The inbound middl... | Not Provided | 2026-07-01 | 2026-07-02 |
| CVE-2026-58578 json | LobeChat before version 2.2.10-canary.15 contains a regular expression denial of service (ReDoS) vulnerability that allows au... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-58466 json | AutoBangumi before 3.2.8 contains a hard-coded default credentials vulnerability that allows unauthenticated attackers to aut... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-58447 json | Invidious through 2.20260626.0, fixed in commit 77ad416, contains a broken object level authorization vulnerability that allo... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-58377 json | JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege users to perfo... | Not Provided | 2026-06-30 | 2026-06-30 |