Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-4055

Malware in sbrugna...

7.5CVSS6.4AI score0.00397EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-6798

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00753EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2025/03/16 2:48 a.m.1 views

SUSE CVE-2025-26260

Plenti = 0.7.16 is vulnerable to code execution. Users uploading '.svelte' files with the /postLocal endpoint can define the file name as javascript codes. The server executes the uploaded file name in host, and cause code execution...

8.8CVSS7.6AI score0.00753EPSS
Exploits1References3
CNNVD
CNNVDadded 2025/03/12 12:0 a.m.1 views

Plenti 安全漏洞

Plenti is a static site generator from Plentico open source. A security vulnerability exists in Plenti version 0.7.16 and earlier, which stems from an uploaded .svelte filename that could be executed as code, leading to code execution...

8.8CVSS7AI score0.00753EPSS
Exploits1References4
CNVD
CNVDadded 2018/08/08 12:0 a.m.1 views

CloudBees Jenkins Accurev Plugin Information Disclosure Vulnerability

CloudBees Jenkins is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks . Accurev Plugin is used in one of the software...

8.8CVSS8.3AI score0.00107EPSS
Exploits0References1
Metasploit
Metasploitadded 2017/12/07 4:25 p.m.215 views

ua-parser-js npm module ReDoS

This module exploits a Regular Expression Denial of Service vulnerability in the npm module "ua-parser-js". Server-side applications that use "ua-parser-js" for parsing the browser user-agent string will be vulnerable if they call the "getOS" or "getResult" functions. This vulnerability was fixed...

7.5CVSS0.5AI score0.57769EPSS
Exploits2
Cvelist
Cvelistadded 2009/11/27 8:45 p.m.17 views

CVE-2009-4084

SQL injection vulnerability in the search feature in e107 0.7.16 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.4AI score0.00397EPSS
Exploits0References4
Cvelist
Cvelistadded 2009/09/28 10:0 p.m.17 views

CVE-2009-3444

Cross-site scripting XSS vulnerability in email.php in e107 0.7.16 and earlier allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header in a news.1 aka news to email action...

5.7AI score0.00634EPSS
Exploits1References6
0day.today
0day.todayadded 2009/09/24 12:0 a.m.11 views

e107 0.7.16 Referer header xss

Exploit for unknown platform in category web applications ============================== e107 0.7.16 Referer header xss ============================== XSS: At page for sending news to email http://site/email.php?news.1 it's possible to conduct XSS attack via Referer header. Particularly it can be...

7.1AI score
Exploits0
CVE
CVEadded 2005/09/07 4:0 a.m.45 views

CVE-2005-2808

CVE-2005-2808 affects frox 0.7.16 and 0.7.17. A flaw in parsing Deny ACLs may let an attacker bypass restrictions and reach blocked hosts. Root cause: improper handling of Deny ACLs. CVSS details indicate network access, no authentication, low complexity, and partial impacts to confidentiality, i...

7.5CVSS6.6AI score0.00489EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder