Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

51 matches found

Nuclei
Nucleiadded 14 hours ago33 views

DomainMOD 4.11.01 - Cross-Site Scripting

DomainMOD through version 4.11.01 is vulnerable to cross-site scripting via the /assets/add/category.php CatagoryName and StakeHolder parameters. id: CVE-2018-20011 info: name: DomainMOD 4.11.01 - Cross-Site Scripting author: arafatansari severity: medium description: | DomainMOD through version...

4.8CVSS6.1AI score0.04448EPSS
Exploits6References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2021-25726

Malware in sbrugna...

5.9CVSS5.7AI score0.00866EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-25721

Malware in sbrugna...

5.9CVSS5.7AI score0.00831EPSS
Exploits0References9
Circl
Circladded 2025/08/19 1:26 p.m.5 views

CVE-2025-20011

creationtimestamp| type| source ---|---|--- 2025-08-19 13:26:45+00:00| seen| MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72...

5.5CVSS7.3AI score0.00129EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 7:48 a.m.8 views

CVE-2024-20011

In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441146; Issue ID: ALPS08441146...

9.8CVSS7.4AI score0.00453EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:33 p.m.5 views

CVE-2022-20011

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS6.1AI score0.00126EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:47 a.m.5 views

CVE-2017-20011

A vulnerability was found in WEKA INTEREST Security Scanner 1.8. It has been rated as problematic. This issue affects some unknown processing of the component HTTP Handler. The manipulation with an unknown input leads to denial of service. It is possible to launch the attack on the local host. Th...

5.5CVSS6.6AI score0.00218EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:27 a.m.4 views

CVE-2019-20011

An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decodeR13R2000 in decode.c...

8.8CVSS6.9AI score0.0147EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2016-20011

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libgrss through 0.7.0 fails to perform TLS certificate verification when downloading feeds, allowing remote attackers to manipulate the contents of feeds withou...

7.5CVSS6.2AI score0.01469EPSS
Exploits0References3
NVD
NVDadded 2024/05/03 3:15 a.m.15 views

CVE-2023-40509

LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists withi...

9.1CVSS8.2AI score0.01998EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:11 a.m.19 views

CVE-2023-40509 LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability

LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists withi...

8.2CVSS8.2AI score0.01998EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/05/03 2:11 a.m.22 views

CVE-2023-40509 LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability

LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists withi...

8.2CVSS8.3AI score0.01998EPSS
Exploits0References1
CVE
CVEadded 2024/05/03 2:11 a.m.54 views

CVE-2023-40509

LG Simple Editor has a directory-traversal vulnerability in the deleteCanvas method that allows remote attackers to delete arbitrary files in the SYSTEM context. The issue stems from insufficient validation of a user-supplied path prior to file operations, with authentication not required and net...

9.1CVSS8.2AI score0.01998EPSS
Exploits0References1Affected Software1
Circl
Circladded 2024/02/05 7:26 a.m.4 views

CVE-2024-20011

creationtimestamp| type| source ---|---|--- 2024-02-05 07:26:53+00:00| seen| https://t.me/ctinow/178996 2024-02-25 17:17:06+00:00| seen| https://t.me/ctinow/192940 2025-06-20 20:44:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19082...

9.8CVSS8.7AI score0.00453EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/02/05 5:59 a.m.20 views

CVE-2024-20011

In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441146; Issue ID: ALPS08441146...

8.8AI score0.00453EPSS
Exploits0References1
Circl
Circladded 2023/02/23 10:18 p.m.3 views

CVE-2023-20011

creationtimestamp| type| source ---|---|--- 2023-02-23 22:18:27+00:00| seen| https://t.me/cibsecurity/58805 2023-02-27 15:00:09+00:00| seen| https://t.me/truesecator/4108...

8.8CVSS8.1AI score0.00362EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/02/23 12:0 a.m.9 views

CVE-2023-20011 Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability

A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller APIC and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system...

8.8CVSS7.7AI score0.00362EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 4:5 a.m.2 views

SUSE CVE-2019-20011

An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decodeR13R2000 in decode.c...

8.8CVSS8.3AI score0.0147EPSS
Exploits1References6
OSV
OSVadded 2022/05/10 8:15 p.m.8 views

CVE-2022-20011

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS5.1AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2022/05/10 8:15 p.m.62 views

CVE-2022-20011

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS6.3AI score0.00126EPSS
Exploits0References3
Rows per page
Query Builder