Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

F5 Big-ip Ltm, Aam, Afm, Analytics, Apm, Asm, Dns, Link Controller, Pem, Websafe Security Vulnerabilities

wolfi
wolfi

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

7.5AI Score

2024-07-02 03:09 AM
24
wolfi
wolfi

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

7.5AI Score

2024-07-02 03:09 AM
21
wolfi
wolfi

CVE-2023-49559 vulnerabilities

Vulnerabilities for packages: external-dns, melange, dagger, guac,...

6.6AI Score

0.0004EPSS

2024-07-02 03:09 AM
1
wolfi
wolfi

CVE-2023-29405 vulnerabilities

Vulnerabilities for packages: kind, policy-controller,...

9.8CVSS

9.9AI Score

0.005EPSS

2024-07-02 03:09 AM
11
wolfi
wolfi

CVE-2023-5528 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, cluster-autoscaler, ip-masq-agent, spark-operator, calico, aws-ebs-csi-driver, nodetaint, prometheus-adapter,...

8.8CVSS

8.1AI Score

0.001EPSS

2024-07-02 03:09 AM
35
wolfi
wolfi

GHSA-HQ6Q-C2X6-HMCH vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, cluster-autoscaler, ip-masq-agent, spark-operator, calico, aws-ebs-csi-driver, nodetaint, prometheus-adapter,...

7.5AI Score

2024-07-02 03:09 AM
12
wolfi
wolfi

CVE-2024-26147 vulnerabilities

Vulnerabilities for packages: up, eksctl, cilium-cli, trivy, zot, flux-helm-controller, flux-source-controller, helm-push, istio-operator, cert-manager, zarf, k9s, kots, chartmuseum, k8sgpt, helm-operator,...

7.5CVSS

7.7AI Score

0.0004EPSS

2024-07-02 03:09 AM
8
wolfi
wolfi

CVE-2024-29903 vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, spire-server, tekton-chains, melange, apko, tkn, kubescape, aactl, zot, falco, falcoctl, skaffold, flux-source-controller, ko, wolfictl, vexctl, neuvector-sigstore-interface, zarf, policy-controller,...

4.2CVSS

4.6AI Score

0.0004EPSS

2024-07-02 03:09 AM
13
wolfi
wolfi

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: bank-vaults, boring-registry, helm-docs, buf, kubevela, configmap-reload, nri-prometheus, tkn, libnvidia-container, flux-notification-controller, gops, litefs, shfmt, php-fpm_exporter, nerdctl, lazygit, tempo, vexctl, nri-couchbase, kpt, docker, gobuster,...

7.5AI Score

2024-07-02 03:09 AM
5
wolfi
wolfi

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

5.3CVSS

7.2AI Score

0.001EPSS

2024-07-02 03:09 AM
31
wolfi
wolfi

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

7.5AI Score

2024-07-02 03:09 AM
22
wolfi
wolfi

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: influx, cass-operator, gobuster, cni-plugins, gke-gcloud-auth-plugin, goreleaser, scorecard, helm-push, protoc-gen-go-grpc, go-bindata, k3d, petname, kind, wait-for-port, kubernetes-dashboard-metrics-scraper, smarter-device-manager, render-template, configmap-reload,.....

7.5AI Score

2024-07-02 03:09 AM
22
wolfi
wolfi

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: keda, gitsign, goreleaser, spire-server, terragrunt, fulcio, containerd, argo-workflows, istio-pilot-agent, tekton-chains, flux-kustomize-controller, kargo, rook, step-ca, timestamp-authority, istio-pilot-discovery, oauth2-proxy, melange, cilium, dex, cloudflared,...

4.3CVSS

6AI Score

0.0005EPSS

2024-07-02 03:09 AM
16
wolfi
wolfi

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, istio-pilot-agent, tekton-chains, thanos-operator, istio-pilot-discovery, trillian, karpenter, go, prometheus-node-exporter, kubevela,...

7.5AI Score

2024-07-02 03:09 AM
20
wolfi
wolfi

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, vault-k8s, boring-registry, gitness, istio-pilot-agent, docker-credential-acr-env, fq, tekton-chains, istio-pilot-discovery, trillian, prometheus-node-exporter, buf, dockerize, cadvisor, go-licenses, tkn, kubescape, kubewatch, nsc, helm, aactl,...

7.5AI Score

2024-07-02 03:09 AM
48
wolfi
wolfi

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, thanos-operator, trillian, karpenter, prometheus-node-exporter, kubevela, kubernetes-csi-external-resizer, nri-prometheus, tkn, kubernetes-csi-livenessprobe,...

7.5AI Score

2024-07-02 03:09 AM
28
wolfi
wolfi

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: coredns, keda, kubernetes-csi-external-attacher, goreleaser, scorecard, kubeflow-katib, terraform-provider-azurerm, tctl, kots, vault-csi-provider, k3d, flux-kustomize-controller, up, gitlab-pages, kubevela, oauth2-proxy, thanos, dex, prometheus, telegraf, dgraph,...

7.5AI Score

2024-07-02 03:09 AM
99
wolfi
wolfi

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: kaf, fuse-overlayfs-snapshotter, gitness, kubevela, tomcat, nri-prometheus, kubescape, kubernetes-csi-livenessprobe, kubewatch, helm, flux-notification-controller, aactl, hey, spark-operator, frp, node-problem-detector, envoy-ratelimit, grpcurl, dotnet, skaffold,...

7.5AI Score

2024-07-02 03:09 AM
26
wolfi
wolfi

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

7.9AI Score

0.0004EPSS

2024-07-02 03:09 AM
20
wolfi
wolfi

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

7.5AI Score

2024-07-02 03:09 AM
25
wolfi
wolfi

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

7.8AI Score

0.0004EPSS

2024-07-02 03:09 AM
27
wolfi
wolfi

GHSA-MW99-9CHC-XW7R vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, gitness, bom, kots, flux-kustomize-controller, kubevela, apko, go-licenses, src-fingerprint, pulumi-language-java, pulumi-language-dotnet, zot, nuclei, pulumi-language-yaml, argo-cd, pulumi-kubernetes-operator, pulumi, scorecard, gomplate,...

7.5AI Score

2024-07-02 03:09 AM
16
wolfi
wolfi

GHSA-V53G-5GJP-272R vulnerabilities

Vulnerabilities for packages: up, eksctl, cilium-cli, trivy, zot, flux-helm-controller, flux-source-controller, helm-push, istio-operator, cert-manager, zarf, k9s, kots, chartmuseum, k8sgpt, helm-operator,...

7.5AI Score

2024-07-02 03:09 AM
10
wolfi
wolfi

CVE-2024-29902 vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, spire-server, tekton-chains, melange, apko, tkn, kubescape, aactl, zot, falco, falcoctl, skaffold, flux-source-controller, ko, wolfictl, vexctl, neuvector-sigstore-interface, zarf, policy-controller,...

4.2CVSS

4.5AI Score

0.0004EPSS

2024-07-02 03:09 AM
11
wolfi
wolfi

CVE-2023-29402 vulnerabilities

Vulnerabilities for packages: kind, policy-controller,...

9.8CVSS

9.9AI Score

0.005EPSS

2024-07-02 03:09 AM
7
wolfi
wolfi

CVE-2023-29404 vulnerabilities

Vulnerabilities for packages: kind, policy-controller,...

9.8CVSS

9.9AI Score

0.005EPSS

2024-07-02 03:09 AM
17
wolfi
wolfi

GHSA-68G3-2P3G-W9PQ vulnerabilities

Vulnerabilities for packages: kind, policy-controller,...

7.5AI Score

2024-07-02 03:09 AM
6
wolfi
wolfi

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, boring-registry, fuse-overlayfs-snapshotter, gitness, docker-credential-acr-env, go-bindata, k9s, tekton-chains, wait-for-port, trillian, karpenter, go, smarter-device-manager, dockerize,...

6.5AI Score

0.0004EPSS

2024-07-02 03:09 AM
20
wolfi
wolfi

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: bank-vaults, boring-registry, helm-docs, buf, kubevela, configmap-reload, nri-prometheus, tkn, libnvidia-container, flux-notification-controller, gops, litefs, shfmt, php-fpm_exporter, nerdctl, lazygit, tempo, vexctl, nri-couchbase, kpt, docker, gobuster,...

7.5AI Score

2024-07-02 03:09 AM
4
wolfi
wolfi

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, trivy, scorecard, kubeflow-katib, argo-workflows, istio-pilot-agent, bom, k9s, kots, tekton-chains, kargo, istio-pilot-discovery, gitlab-runner, flux-image-reflector-controller, up, kubevela, dagger, filebeat, prometheus, cadvisor, telegraf, guac,....

7.5AI Score

2024-07-02 03:09 AM
10
wolfi
wolfi

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...

6AI Score

0.0004EPSS

2024-07-02 03:09 AM
20
wolfi
wolfi

CVE-2023-49568 vulnerabilities

Vulnerabilities for packages: gitsign, goreleaser, gitness, bom, kots, flux-kustomize-controller, kubevela, apko, go-licenses, src-fingerprint, pulumi-language-java, pulumi-language-dotnet, zot, nuclei, pulumi-language-yaml, argo-cd, pulumi-kubernetes-operator, pulumi, scorecard, gomplate,...

7.5CVSS

7.8AI Score

0.0005EPSS

2024-07-02 03:09 AM
29
wolfi
wolfi

GHSA-XR7R-F8XQ-VFVV vulnerabilities

Vulnerabilities for packages: trivy, k9s, kots, k3d, cadvisor, telegraf, datadog-agent, kubernetes, ingress-nginx-controller, kubescape, kaniko, runc, grype, skopeo, zot, nerdctl, nvidia-device-plugin, syft, skaffold, wolfictl, newrelic-infrastructure-agent, ctop, k3s, buildkitd, docker,...

7.5AI Score

2024-07-02 03:09 AM
15
wolfi
wolfi

GHSA-PXHW-596R-RWQ5 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, cluster-autoscaler, kubernetes-csi-driver-hostpath, ip-masq-agent, nodetaint, kubernetes, calico, aws-ebs-csi-driver, local-static-provisioner, spark-operator,...

7.5AI Score

2024-07-02 03:09 AM
6
githubexploit
githubexploit

Exploit for CVE-2024-6387

Qualys Security Advisory regreSSHion: RCE in OpenSSH's server,...

2024-07-02 02:54 AM
1
githubexploit
githubexploit

Exploit for CVE-2024-6387

OpenSSH CVE-2024-6387 Vulnerability Checker This Python script...

8.1CVSS

EPSS

2024-07-02 02:51 AM
1
githubexploit
githubexploit

Exploit for CVE-2024-6387

Link to Qualys Write-Up:...

9AI Score

2024-07-02 02:45 AM
6
cve
cve

CVE-2024-5938

The Boot Store theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter within the theme's Button shortcode in all versions up to, and including, 1.6.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS

5.8AI Score

EPSS

2024-07-02 02:15 AM
3
nvd
nvd

CVE-2024-5938

The Boot Store theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter within the theme's Button shortcode in all versions up to, and including, 1.6.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS

EPSS

2024-07-02 02:15 AM
3
cvelist
cvelist

CVE-2024-5938 Boot Store <= 1.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button Shortcode

The Boot Store theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter within the theme's Button shortcode in all versions up to, and including, 1.6.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS

EPSS

2024-07-02 02:02 AM
2
githubexploit
githubexploit

Exploit for CVE-2024-6387

OpenSSH CVE-2024-6387 Vulnerability Checker Overview...

7.2AI Score

2024-07-02 01:24 AM
5
githubexploit
githubexploit

Exploit for CVE-2024-6387

漏洞描述 CVE-2024-6387 漏洞利用,针对sshd基于 glibc 的 Linux 系统上 OpenSSH...

8.1CVSS

8.2AI Score

EPSS

2024-07-02 01:08 AM
4
impervablog
impervablog

Imperva Client-Side Protection Mitigates the Polyfill Supply Chain Attack

The recent discovery of a website supply chain attack using the cdn.polyfill.io domain has left many websites vulnerable to malicious code injection. Once a trusted resource for adding JavaScript polyfills to websites, the domain has recently become the epicenter of a significant website supply...

8AI Score

2024-07-01 11:42 PM
2
nvd
nvd

CVE-2024-23737

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or...

EPSS

2024-07-01 10:15 PM
2
cve
cve

CVE-2024-23736

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Confluence allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or...

7.1AI Score

EPSS

2024-07-01 10:15 PM
2
cve
cve

CVE-2024-23737

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or...

7.1AI Score

EPSS

2024-07-01 10:15 PM
4
nvd
nvd

CVE-2024-23736

Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Confluence allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or...

EPSS

2024-07-01 10:15 PM
2
nvd
nvd

CVE-2024-38366

trunk.cocoapods.org is the authentication server for the CoacoaPods dependency manager. The part of trunk which verifies whether a user has a real email address on signup used a rfc-822 library which executes a shell command to validate the email domain MX records validity. It works via an DNS MX.....

9CVSS

EPSS

2024-07-01 09:15 PM
5
cve
cve

CVE-2024-38366

trunk.cocoapods.org is the authentication server for the CoacoaPods dependency manager. The part of trunk which verifies whether a user has a real email address on signup used a rfc-822 library which executes a shell command to validate the email domain MX records validity. It works via an DNS MX.....

9CVSS

9.4AI Score

EPSS

2024-07-01 09:15 PM
16
githubexploit
githubexploit

Exploit for CVE-2024-6387

CVE-2024-6387 Bulk Scanning Tool for OpenSSH CVE-2024-6387,...

8.1CVSS

8.4AI Score

EPSS

2024-07-01 08:45 PM
18
Total number of security vulnerabilities267971