Tag
high
advisory
CVE-2026-44930: Apache CXF LDAP Injection Vulnerability
2 rules 1 TTP 1 CVECVE-2026-44930 is an LDAP injection vulnerability in the LDAP Certificate repository of the XKMS server in Apache CXF that may allow an attacker to retrieve arbitrary certificates from the repository.
CXF
ldap-injection
cve
web-application
2r
1t
1c
high
advisory
ZITADEL LDAP Filter Injection Vulnerability in Login Flow
2 rules 1 IOCZITADEL's LDAP identity provider implementation fails to properly escape user-provided usernames before incorporating them into LDAP search filters, allowing unauthenticated attackers to perform LDAP Filter Injection to enumerate usernames and extract sensitive attribute data.
ZITADEL +2
ldap-injection
information-disclosure
2r
1i
high
advisory
OPNsense LDAP Injection Vulnerability (CVE-2026-34578)
2 rules 1 TTP 1 CVEOPNsense versions prior to 26.1.6 are vulnerable to LDAP injection, allowing unauthenticated attackers to enumerate valid LDAP usernames and bypass group membership restrictions via the WebGUI login page.
ldap-injection
vulnerability
opnsense
2r
1t
1c