Falhas do tipo CWE-90
57 resultadosCVE-2026-33289HIGHSuiterCRM has LDAP Filter Injection in Authentication ModuleEPSS 0.7%CVE-2023-6905MEDIUMJahastech NxFilter Bind Request ldap injectionEPSS 0.7%CVE-2026-25560HIGHWeKan < 8.19 LDAP Authentication Filter InjectionEPSS 0.7%CVE-2026-40459HIGHLDAP Injection in PAC4JEPSS 0.6%CVE-2025-48208HIGHApache HertzBeat (incubating): Jmx JNDI injection vulnerabilityEPSS 0.6%CVE-2026-46745MEDIUMApache Airflow FAB provider: LDAP Filter Injection in FAB Auth Manager _search_ldap reachable via /auth/tokenEPSS 0.6%CVE-2026-0636MEDIUMLDAP Injection Vulnerability in LDAPStoreHelper.javaEPSS 0.5%CVE-2026-49268HIGHApache Shiro: LDAP DN Injection in DefaultLdapRealmEPSS 0.5%CVE-2023-31025MEDIUMCVEEPSS 0.5%CVE-2024-56841CRITICALA vulnerability has been identified in Mendix LDAP (All versions < V1.1.2). Affected versions of the module are vulnerable to LDAP injectionEPSS 0.5%CVE-2026-44671HIGHZITADEL: LDAP Filter Injection in Login FlowEPSS 0.5%CVE-2026-44930MEDIUMApache CXF: LDAP Injection vulnerability in XKMS LDAP RepositoryEPSS 0.5%CVE-2026-41919CRITICALApache OFBiz: Authentication Bypass due to Improper Neutralization of LDAP Special Elements in DN ConstructionEPSS 0.5%CVE-2023-3447HIGHActive Directory Integration / LDAP Integration <= 4.1.5 - Authenticated (Subscriber+) LDAP InjectionEPSS 0.4%CVE-2026-31828MEDIUMParse Server has an LDAP injection via unsanitized user input in DN and group filter constructionEPSS 0.4%CVE-2026-40193HIGHMaddy Mail Server: LDAP Filter Injection via Unsanitized UsernameEPSS 0.4%CVE-2026-34578HIGHOPNsense has an LDAP Injection via Unsanitized Username in AuthenticationEPSS 0.4%CVE-2026-11748MEDIUMA vulnerability has been identified in centraldogma-server-auth-shiro versions prior to 0.84.0, where the SearchFirstActiveDirectoryRealm suEPSS 0.4%CVE-2025-12764HIGHpgAdmin 4: LDAP injection vulnerability in LDAP authentication flow.EPSS 0.4%CVE-2026-21880MEDIUMKanboard LDAP Injection Vulnerability can Lead to User Enumeration and Information DisclosureEPSS 0.4%