Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

64 matches found

NVD
NVDadded 3 days ago8 views

CVE-2026-46718

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Apache Calcite. This issue affects Apache Calcite: from 1.5.0 before 1.42. Users are recommended to upgrade to version 1.42, which fixes the issue...

6.5CVSS0.00158EPSS
Exploits0References2
Cvelist
Cvelistadded 3 days ago33 views

CVE-2026-46718 Apache Calcite: A user-controled model can load arbitrary classes, leading to code execution

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Apache Calcite. This issue affects Apache Calcite: from 1.5.0 before 1.42. Users are recommended to upgrade to version 1.42, which fixes the issue...

0.00158EPSS
Exploits0References1
EUVD
EUVDadded 3 days ago7 views

EUVD-2026-33906

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Apache Calcite. This issue affects Apache Calcite: from 1.5.0 before 1.42. Users are recommended to upgrade to version 1.42, which fixes the issue...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 3 days ago4 views

CVE-2026-46718

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Apache Calcite. This issue affects Apache Calcite: from 1.5.0 before 1.42. Users are recommended to upgrade to version 1.42, which fixes the issue...

5.8AI score0.00158EPSS
Exploits0References2Affected Software1
CVE
CVEadded 3 days ago12 views

CVE-2026-46718

Apache Calcite is affected by CVE-2026-46718: Unsafe Reflection via a user-controlled model can load arbitrary classes, enabling code execution. Affected: 1.5.0 up to

6.5CVSS5.8AI score0.00158EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/05/08 5:17 p.m.12 views

CVE-2026-6659

CVE-2026-6659 affects Crypt::PasswdMD5 up to 1.42 for Perl. Root cause: salts generated with Perl’s built-in rand are predictable, making password hashes vulnerable to weaknesses in randomness. Exploitation details are not provided in the documents. No remediation information is present in the pr...

7.5CVSS5.8AI score0.00015EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/16 3:30 p.m.2 views

EUVD-2025-208727

Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT Webserver modules allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42...

9.2CVSS6AI score0.0002EPSS
Exploits0References3
NVD
NVDadded 2026/03/16 2:17 p.m.2 views

CVE-2025-10461

Global file reads caused by improper URL checks in webserver in Softing Industrial Automation GmbH smartLinks on docker filesystem modules allows file access. This issue affects smartLink SW-HT: through 1.42 smartLink SW-PN: through 1.03...

5.3CVSS0.00042EPSS
Exploits0References2
NVD
NVDadded 2026/03/16 2:17 p.m.1 views

CVE-2025-10685

Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT Webserver modules allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42...

9.2CVSS0.0002EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/16 1:27 p.m.20 views

CVE-2025-10461 Global file reads caused by improper URL checks in webserver

Global file reads caused by improper URL checks in webserver in Softing Industrial Automation GmbH smartLinks on docker filesystem modules allows file access. This issue affects smartLink SW-HT: through 1.42 smartLink SW-PN: through 1.03...

5.3CVSS0.00042EPSS
Exploits0References2
CVE
CVEadded 2026/03/16 1:27 p.m.10 views

CVE-2025-10461

The CVE-2025-10461 affects Softing Industrial Automation GmbH smartLinks running in Docker (filesystem modules), where improper URL checks enable global file reads. Affected versions: smartLink SW-HT up to 1.42 and smartLink SW-PN up to 1.03. Root cause is insufficient URL validation allowing acc...

5.3CVSS5.8AI score0.00042EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/16 1:14 p.m.20 views

CVE-2025-10685 HTTP POST with specific higher content length leads into heap corruption

Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT Webserver modules allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42...

9.2CVSS0.0002EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/03/16 12:0 a.m.2 views

PT-2026-25711

Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT Webserver modules allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42...

9.2CVSS6AI score0.0002EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/02/02 10:55 p.m.1 views

CVE-2025-6927 Autoblocks from global account suppressions are publicly visible

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php, includes/api/ApiQueryBlocks.Php. This issue affects MediaWiki: from = 1.42.0 before 1.39.13, 1.42.7 1.43.2, 1.44.0...

2.3CVSS5.3AI score0.00031EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : pango-1.42.4-4.el7 (AXSA:2020-060:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-060:01 advisory. pango: pangolog2visgetembeddinglevels heap-based buffer overflow CVE-2019-1010238 CVE-2019-1010238 Gnome Pango 1.42 and later is affected by: Buffer Overflow...

9.8CVSS6.1AI score0.09766EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/10/22 7:13 a.m.1 views

CVE-2025-12004

Incorrect Permission Assignment for Critical Resource vulnerability in The Wikimedia Foundation Mediawiki - Lockdown Extension allows Privilege Abuse. Fixed in Mediawiki Core Action APIThis issue affects Mediawiki - Lockdown Extension: from master before 1.42...

10CVSS7AI score0.0006EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/10/21 12:0 a.m.1 views

MediaWiki - Lockdown Extension 安全漏洞

MediaWiki - Lockdown Extension is an open source permission control extension for MediaWiki. A security vulnerability exists in MediaWiki - Lockdown Extension versions up to and including version 1.42, which stems from an improper assignment of critical resource permissions and could lead to...

10CVSS6.4AI score0.0006EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-30684

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00016EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-49386

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00083EPSS
Exploits0References1
NVD
NVDadded 2025/09/22 7:15 p.m.0 views

CVE-2025-57927

Cross-Site Request Forgery CSRF vulnerability in Stephanie Leary Dashboard Notepad dashboard-notepad allows Cross Site Request Forgery.This issue affects Dashboard Notepad: from n/a through = 1.42...

4.3CVSS0.00016EPSS
Exploits0References1
Rows per page
Query Builder