Lucene search
K

2148 matches found

Nuclei
Nuclei
added yesterday90 views

Powertek Firmware <3.30.30 - Authorization Bypass

Powertek firmware multiple brands before 3.30.30 running Power Distribution Units are vulnerable to authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface /cgi/getparam.cgi with the tmpToken cookie set to an...

9.8CVSS7AI score0.13425EPSS
Exploits1References5
Nuclei
Nuclei
added yesterday21 views

Landray EKP - Path Traversal

A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function delPreviewFile of the file /sys/ui/sysuicomponent/sysUiComponent.do?method=delPreviewFile. The manipulation of the argument directoryPath leads to path traversal. It is possible to...

6.9CVSS5.9AI score0.05597EPSS
Exploits1References3
Exploit DB
Exploit DB
added yesterday26 views

MEmu Android Emulator 9.2.7.0 - Local Privilege Escalation

Exploit Title: MEmu Android Emulator 9.2.7.0 - Local Privilege Escalation Google Dork: N/A Date: 2026-06-16 Exploit Author: Mohammad Vendor Homepage: https://www.memuplay.com Software Link: https://www.memuplay.com/download.html Version: 9.2.7.0 Tested on: Windows 10 x64 / Windows 11 x64 CVE:...

7.8CVSS5.9AI score0.00176EPSS
Exploits2
OSV
OSV
added 5 days ago2 views

GHSA-4Q9J-6299-GXMR Dragonfly Manager OAuth provider client_secret disclosure via unauthenticated GET /api/v1/oauth

Summary The Dragonfly Manager exposes GET /api/v1/oauth and GET /api/v1/oauth/:id to unauthenticated clients. The response body deserializes the entire manager/models.Oauth struct, which includes the clientsecret field. Any network-reachable attacker can read the OAuth client secrets configured f...

6.3CVSS6AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 5 days ago7 views

Dragonfly Manager OAuth provider client_secret disclosure via unauthenticated GET /api/v1/oauth

Summary The Dragonfly Manager exposes GET /api/v1/oauth and GET /api/v1/oauth/:id to unauthenticated clients. The response body deserializes the entire manager/models.Oauth struct, which includes the clientsecret field. Any network-reachable attacker can read the OAuth client secrets configured f...

9.8CVSS6AI score0.00713EPSS
Exploits1References2Affected Software1
OSV
OSV
added 5 days ago4 views

GHSA-PMCH-G965-GRMR Langroid: SQLChatAgent _validate_query blocklist misses pg_read_file family enabling arbitrary file read

Summary SQLChatAgent in langroid ships a validatequery defense-in-depth layer whose DANGEROUSSQLPATTERNS regex blocklist enumerates dangerous SQL primitives by specific function name. The list misses the canonical PostgreSQL filesystem-disclosure family pgreadfile, pgstatfile, pglslogdir,...

8.7CVSS6.1AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 5 days ago7 views

Langroid: SQLChatAgent _validate_query blocklist misses pg_read_file family enabling arbitrary file read

Summary SQLChatAgent in langroid ships a validatequery defense-in-depth layer whose DANGEROUSSQLPATTERNS regex blocklist enumerates dangerous SQL primitives by specific function name. The list misses the canonical PostgreSQL filesystem-disclosure family pgreadfile, pgstatfile, pglslogdir,...

6.1AI score
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 5 days ago7 views

PT-2026-55450

Summary The Dragonfly Manager exposes GET /api/v1/oauth and GET /api/v1/oauth/:id to unauthenticated clients. The response body deserializes the entire manager/models.Oauth struct, which includes the client secret field. Any network-reachable attacker can read the OAuth client secrets configured...

9.8CVSS6AI score0.00713EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 5 days ago9 views

PT-2026-55461

Summary SQLChatAgent in langroid ships a validate query defense-in-depth layer whose DANGEROUS SQL PATTERNS regex blocklist enumerates dangerous SQL primitives by specific function name. The list misses the canonical PostgreSQL filesystem-disclosure family pg read file, pg stat file, pg ls logdir...

8.7CVSS6.2AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 5 days ago8 views

PT-2026-55407

Summary SQLChatAgent in langroid ships a validate query defense-in-depth layer whose DANGEROUS SQL PATTERNS regex blocklist enumerates dangerous SQL primitives by specific function name. The list misses the canonical PostgreSQL filesystem-disclosure family pg read file, pg stat file, pg ls logdir...

8.7CVSS6.2AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 5 days ago3 views

openSUSE 16: stgit / stgit-bash-completion / stgit-emacs / stgit-fish-completion / etc (openSUSE-SU-2026:21185-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:21185-1 advisory. Changes in stgit: - Update to version 2.6.0: chore: update changelog for 2.6.0 fiximport: respect --name verbatim, ignoring stgit.namelength testrefresh...

8.5CVSS6.1AI score0.00351EPSS
Exploits0References3
Oracle linux
Oracle linux
added 5 days ago8 views

Unbreakable Enterprise kernel security update

6.12.0-204.92.4.2 - KVM: x86: Fix shadow paging use-after-free due to unexpected role Paolo Bonzini Orabug: 39673880 - net/sched: fix pedit partial COW leading to page cache corruption Rajat Gupta CVE-2026-46331 - netsched: actpedit: use RCU in tcfpeditdump Eric Dumazet Orabug: 39668752 -...

9.8CVSS6.3AI score0.96267EPSS
Exploits308
GithubExploit
GithubExploit
added last week62 views

nationstate-cyber-tools

NATION-STATE CYBER WEAPONS ARSENAL Live Web Page: htt...

7AI score
Exploits0
OSV
OSV
added last week2 views

OPENSUSE-SU-2026:21185-1 Security update for stgit

This update for stgit fixes the following issues: Changes in stgit: - Update to version 2.6.0: chore: update changelog for 2.6.0 fiximport: respect --name verbatim, ignoring stgit.namelength testrefresh: use testwhenfinished for status.renames cleanup expect over unwrap for test bugfix: issue 615...

8.5CVSS5.8AI score0.00351EPSS
Exploits0References2
Securelist
Securelist
added 2026/06/29 10:0 a.m.10 views

The Gentlemen are knocking: сustom backdoors and evolving tactics

Introduction This year saw the emergence of The Gentlemen, a prominent example of a group operating under the ransomware-as-a-service RaaS model. Although our initial assessment suggested the group first appeared in mid-2025, it actually started ramping up its activities at the beginning of 2026...

6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.5 views

SUSE SLES15 Security Update : aws-iam-authenticator (SUSE-SU-2026:2643-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2643-1 advisory. This update for aws-iam-authenticator fixes the following issues - CVE-2022-1996: CORS bypass bsc1200528. - CVE-2022-2385:...

9.6CVSS6.4AI score0.02737EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2026/06/26 8:35 a.m.4 views

Security update for aws-iam-authenticator

This update for aws-iam-authenticator fixes the following issues CVE-2022-1996: CORS bypass bsc1200528. CVE-2022-2385: aws-iam-authenticator AccessKeyID validation bypass bsc1201395. CVE-2024-39689: remove root certificates from GLOBALTRUST from the root store. CVE-2025-47910: net/http:...

9.1CVSS5.7AI score0.02737EPSS
Exploits1References26
OSV
OSV
added 2026/06/26 8:35 a.m.2 views

SUSE-SU-2026:2643-1 Security update for aws-iam-authenticator

This update for aws-iam-authenticator fixes the following issues - CVE-2022-1996: CORS bypass bsc1200528. - CVE-2022-2385: aws-iam-authenticator AccessKeyID validation bypass bsc1201395. - CVE-2024-39689: remove root certificates from GLOBALTRUST from the root store. - CVE-2025-47910: net/http:...

9.6CVSS5.7AI score0.02737EPSS
Exploits1References14
OSV
OSV
added 2026/06/22 9:21 p.m.4 views

GHSA-9837-48HR-Q32J Glances has Insecure Pickle Deserialization in its Version Cache that Leads to Arbitrary Code Execution

Summary glances/outdated.py uses pickle.load to read a version-check cache file stored at a predictable, world-accessible path /.cache/glances/glances-version.db or $XDGCACHEHOME/glances/glances-version.db. No integrity check, signature verification, or format validation is performed before...

7.8CVSS6.6AI score0.00303EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/06/22 9:21 p.m.6 views

Glances has Insecure Pickle Deserialization in its Version Cache that Leads to Arbitrary Code Execution

Summary glances/outdated.py uses pickle.load to read a version-check cache file stored at a predictable, world-accessible path /.cache/glances/glances-version.db or $XDGCACHEHOME/glances/glances-version.db. No integrity check, signature verification, or format validation is performed before...

7.8CVSS6.6AI score0.00303EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder