Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

Positive Technologies
Positive Technologiesadded 2026/05/07 12:0 a.m.5 views

PT-2026-38422

Date: May 7, 2026 Status: ACTIVE GLOBAL EXPLOITATION / STATE-SPONSORED CAMPAIGN Target: Palo Alto Networks PAN-OS GlobalProtect Gateway / Management Interface Severity: 10.0 MAXIMUM CRITICAL Unauthenticated Remote Root Code Execution 1. Analysis: Why "PAN-Optic" is Today's Apex Threat While the...

5.8AI score
Exploits0References1
Patchstack
Patchstackadded 2025/10/22 12:1 a.m.3 views

WordPress SM CountDown Widget plugin <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Gilang - DJ in WordPress Plugin SM CountDown Widget versions = 1.2...

6.4CVSS5.7AI score0.00032EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-11880

Malware in sbrugna...

7.8CVSS7.7AI score0.00043EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.4 views

Ubuntu 18.04 LTS / 20.04 LTS : KMail vulnerabilities (USN-7731-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7731-1 advisory. Damian Poddebniak, Christian Dresen, Jens Mller, Fabian Ising, Sebastian Schinzel, Simon Friedberger, Juraj Somorovsky, and Jrg Schwenk...

6.5CVSS6.7AI score0.00447EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2020-11880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in KDE KMail before 19.12.3. By using the proprietary non-RFC6068 mailto?attach=... parameter, a website or other source of mailto links...

6.5CVSS7.1AI score0.00269EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:51 a.m.3 views

CVE-2024-11880

The B Testimonial – testimonial plugin for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'btestimonial' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS5.8AI score0.00233EPSS
Exploits0References1
Circl
Circladded 2024/12/04 8:35 a.m.2 views

CVE-2024-11880

creationtimestamp| type| source ---|---|--- 2024-12-04 08:35:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113593635878848341 2024-12-04 10:53:59+00:00| seen| https://t.me/cvedetector/11965...

6.4CVSS8.7AI score0.00233EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/12/04 8:22 a.m.17 views

CVE-2024-11880 B Testimonial – testimonial plugin for WP <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The B Testimonial – testimonial plugin for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'btestimonial' shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...

6.4CVSS0.00233EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 3:59 a.m.2 views

SUSE CVE-2020-11880

An issue was discovered in KDE KMail before 19.12.3. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make KMail attach local files to a composed email message without showing a warning to the user, as demonstrated by an...

6.5CVSS5.7AI score0.00269EPSS
Exploits0References3
OSV
OSVadded 2020/04/17 6:15 p.m.2 views

UBUNTU-CVE-2020-11880

An issue was discovered in KDE KMail before 19.12.3. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make KMail attach local files to a composed email message without showing a warning to the user, as demonstrated by an...

6.5CVSS6.4AI score0.00269EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2020/04/17 5:7 p.m.23 views

CVE-2020-11880

An issue was discovered in KDE KMail before 19.12.3. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make KMail attach local files to a composed email message without showing a warning to the user, as demonstrated by an...

6.5CVSS6.3AI score0.00269EPSS
Exploits0
CVE
CVEadded 2020/04/17 5:7 p.m.146 views

CVE-2020-11880

CVE-2020-11880 affects KDE KMail prior to 19.12.3. A non-RFC6068 mailto?attach=… parameter lets a website or mailto link cause KMail to attach local files to a composed message without warning (demonstrated by attach=.bash_history). The vulnerability arises from how KMail handles the proprietary ...

6.5CVSS6.3AI score0.00269EPSS
Exploits0References2Affected Software1
Circl
Circladded 2019/05/22 4:48 p.m.0 views

CVE-2019-11880

creationtimestamp| type| source ---|---|--- 2019-05-22 16:48:17+00:00| seen| https://t.me/cvemitreorg/129...

7.5CVSS7.1AI score0.00309EPSS
Exploits4References1
OSV
OSVadded 2019/05/22 4:29 p.m.6 views

CVE-2019-11880

CommSy through 8.6.5 has SQL Injection via the cid parameter. This is fixed in 9.2...

7.5CVSS8AI score
Exploits0References2
CVE
CVEadded 2019/05/22 3:47 p.m.58 views

CVE-2019-11880

CVE-2019-11880 affects CommSy

7.5CVSS7.8AI score0.00309EPSS
Exploits4References2Affected Software1
exploitpack
exploitpackadded 2019/05/15 12:0 a.m.38 views

CommSy 8.6.5 - SQL injection

CommSy 8.6.5 - SQL injection Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-...

5CVSS0.2AI score0.00309EPSS
Exploits4
Exploit DB
Exploit DBadded 2019/05/15 12:0 a.m.107 views

CommSy 8.6.5 - SQL injection

Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-16 Send details to the vendor...

7.5CVSS7.6AI score0.00309EPSS
Exploits4
Packet Storm
Packet Stormadded 2019/05/15 12:0 a.m.113 views

CommSy 8.6.5 SQL Injection

Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-16 Send details to the vendor...

0.2AI score0.00309EPSS
Exploits4
NVD
NVDadded 2018/10/29 6:29 p.m.9 views

CVE-2018-11880

Incorrect bound check can lead to potential buffer overwrite in WLAN function in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

7.8CVSS7.8AI score0.00033EPSS
Exploits0References2
Cvelist
Cvelistadded 2018/10/29 6:0 p.m.14 views

CVE-2018-11880

Incorrect bound check can lead to potential buffer overwrite in WLAN function in Snapdragon Mobile in version SD 835, SD 845, SD 850, SDA660...

7.8AI score0.00033EPSS
Exploits0References2
Rows per page
Query Builder