Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2023/10/06 12:0 a.m.3 views

Digital Agency e-Gov Electronic application Security Breach

The Digital Agency e-Gov Electronic application is an official Japanese government portal from Digital Agency Japan. A security vulnerability exists in Digital Agency e-Gov Electronic application, which stems from an inability to properly restrict custom URL schemes. Affected products and version...

4.3CVSS6.8AI score0.00056EPSS
Exploits0References5
Prion
Prionadded 2021/09/14 12:15 p.m.24 views

Design/Logic Flaw

In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell e.g., aspx to the server and then call upon it to receive a reverse shell from the victim server. The files are uploaded to /Content/Template/root/reverse-shell.aspx and can be simply triggered by browsing that URL...

10CVSS9.4AI score0.0058EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2021/09/14 11:40 a.m.47 views

CVE-2021-36581

CVE-2021-36581 affects Kooboo CMS 2.1.1.0 and is an insecure file upload vulnerability. The description states the server does not verify file extensions, allowing uploads of arbitrary files (example: aspx), which could impact confidentiality, integrity, and availability as reflected by the CVSS ...

9.8CVSS9.4AI score0.00537EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2021/09/14 12:0 a.m.3 views

Kooboo 代码问题漏洞

Kooboo is a new web development tool capable of developing static pages or complex websites. A security vulnerability exists in Kooboo CMS 2.1.1.0, which stems from the software's lack of effective validation and filtering of user uploaded files. An attacker can upload a remote shell e.g. aspx to...

10CVSS8.4AI score0.0058EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletinsadded 2019/10/18 3:10 a.m.26 views

Security Bulletin: Vulnerability in SSLv3 affects Netezza Performance Portal (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in Netezza Performance Portal. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remote attacker to obtain sensitive...

4.3CVSS1.7AI score0.93538EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2019/10/18 3:10 a.m.25 views

Security Bulletin: TLS padding vulnerability affects IBM Netezza Performance Portal (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM Netezza Performance Portal. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product could allow a remote attacker to obtain sensitive information...

4.3CVSS0.4AI score0.03099EPSS
Exploits5Affected Software1
Packet Storm
Packet Stormadded 2008/02/15 12:0 a.m.29 views

INFIGO-2008-02-13.txt

INFIGO IS Security Advisory ADV-2008-02-13 http://www.infigo.hr/en/ Title: SOPHOS Email Security Appliance Cross Site Scripting Vulnerability Advisory ID: INFIGO-2008-02-13 Date: 2008-02-13 Advisory URL: http://www.infigo.hr/en/infocus/advisories/INFIGO-2008-02-13 Impact: Malicious JavaScript Cod...

7.4AI score
Exploits0
Rows per page
Query Builder