Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20913 matches found

Nuclei
Nucleiadded yesterday24 views

Joomla! Roland Breedveld Album 1.14 - Local File Inclusion

Joomla! Roland Breedveld Album 1.14 comalbum is susceptible to local file inclusion because it allows remote attackers to access arbitrary directories and have unspecified other impact via a .. dot dot in the target parameter to index.php. id: CVE-2009-3318 info: name: Joomla! Roland Breedveld...

7.5CVSS6.1AI score0.06455EPSS
Exploits1References4
Nuclei
Nucleiadded 2 days ago53 views

KR-Web <=1.1b2 - Remote File Inclusion

KR-Web 1.1b2 and prior contain a remote file inclusion vulnerability via adm/krgourl.php, which allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter. id: CVE-2009-4223 info: name: KR-Web =1.1b2 - Remote File Inclusion author: geeknik severity: high...

7.5CVSS6.2AI score0.55507EPSS
Exploits1References5
Nuclei
Nucleiadded 2 days ago31 views

Horde/Horde Groupware - Local File Inclusion

Horde before 3.2.4 and 3.3.3 and Horde Groupware before 1.1.5 are susceptible to local file inclusion in framework/Image/Image.php because it allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the HordeImage driver name. id: CVE-2009-0932 inf...

6.4CVSS6.2AI score0.41263EPSS
Exploits8References5
Circl
Circladded 5 days ago7 views

CVE-2009-1054

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:41+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/21d51942-a812-470d-bd72-318166dfbcf4 2026-06-23 14:04:16+00:00| exploited|...

9.3CVSS5.8AI score0.03909EPSS
Exploits0References2
Circl
Circladded 5 days ago5 views

CVE-2009-1308

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:40+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/7e95f5d8-3356-4723-915c-ad13fef8ae89 2026-06-23 14:04:16+00:00| exploited|...

4.3CVSS7.3AI score0.02288EPSS
Exploits1References2
Circl
Circladded 5 days ago6 views

CVE-2009-1481

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:40+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/390aa6a0-7e4c-41f8-874b-8351520d12c6 2026-06-23 14:04:16+00:00| exploited|...

7.5CVSS5.8AI score0.01173EPSS
Exploits1References2
Circl
Circladded 5 days ago5 views

CVE-2009-5076

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2a17ab4f-bc4a-4e5b-8097-ae7b48f80bcd 2026-06-23 14:04:11+00:00| exploited|...

7.5CVSS5.8AI score0.01409EPSS
Exploits1References2
Circl
Circladded 2026/06/13 5:17 a.m.5 views

CVE-2009-0014

creationtimestamp| type| source ---|---|--- 2026-06-13 05:17:38+00:00| seen| https://mastodon.bsd.cafe/users/grahamperrin/statuses/116741102400640422...

2.1CVSS4.9AI score0.00349EPSS
Exploits1References1
Circl
Circladded 2026/06/09 8:57 a.m.6 views

CVE-2009-10007

creationtimestamp| type| source ---|---|--- 2026-06-09 08:57:25+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnttcgurjq2q...

9.1CVSS5.3AI score0.00369EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2009-10007

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Catalyst::Plugin::Authentication versions before 0.10027 for Perl is susceptible to session fixation attacks. Catalyst::Plugin::Authentication does not...

9.1CVSS5.5AI score0.00369EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/06/05 7:18 p.m.6 views

CVE-2026-10063

A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formWPS of the file /goform/formWPS. Such manipulation of the argument peerPin leads to stack-based buffer overflow. The attack may be performed from remote. The exploit is publicly available and...

9.8CVSS8.2AI score0.00853EPSS
Exploits1References1
Chainguard
Chainguardadded 2026/06/05 7:18 p.m.9 views

CVE-2009-2671 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-17-openj9, openjdk-8-openj9, openjdk-26-openj9, openjdk-21-openj9, openjdk-11-openj9...

5CVSS6.2AI score0.04326EPSS
Exploits0
Chainguard
Chainguardadded 2026/06/05 7:18 p.m.7 views

CVE-2009-2670 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-17-openj9, openjdk-8-openj9, openjdk-26-openj9, openjdk-21-openj9, openjdk-11-openj9...

5CVSS6.2AI score0.03286EPSS
Exploits1
Chainguard
Chainguardadded 2026/06/05 7:18 p.m.5 views

CVE-2009-1103 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-17-openj9, openjdk-8-openj9, openjdk-26-openj9, openjdk-21-openj9, openjdk-11-openj9...

6.4CVSS6.2AI score0.04898EPSS
Exploits0
Chainguard
Chainguardadded 2026/06/05 7:18 p.m.7 views

CVE-2009-2675 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-17-openj9, openjdk-8-openj9, openjdk-26-openj9, openjdk-21-openj9, openjdk-11-openj9...

10CVSS6.2AI score0.04324EPSS
Exploits0
Chainguard
Chainguardadded 2026/06/05 7:18 p.m.9 views

CVE-2009-2673 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-17-openj9, openjdk-8-openj9, openjdk-26-openj9, openjdk-21-openj9, openjdk-11-openj9...

7.5CVSS6.2AI score0.04838EPSS
Exploits0
EUVD
EUVDadded 2026/05/31 1:0 p.m.16 views

EUVD-2026-33504

A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formWlanSetup of the file /goform/formWlanSetup. Executing a manipulation of the argument enrollee can lead to command injection. The attack can be launched remotely. The exploit has been publicly...

6.5CVSS6.4AI score0.01072EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/31 12:45 p.m.11 views

CVE-2026-10181

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSysCmd of the file /goform/formSysCmd. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made...

9CVSS7.8AI score0.00472EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/05/31 1:15 a.m.13 views

EUVD-2026-33478

A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file /goform/formSysLog. This manipulation of the argument currentpage causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been mad...

9CVSS7.9AI score0.00463EPSS
Exploits0References4
CVE
CVEadded 2026/05/31 12:45 a.m.13 views

CVE-2026-10158

TRENDnet TEW-432BRP (firmware 3.10B20) contains a stack-based buffer overflow in the formPortFw function (/goform/formPortFw) triggered by manipulation of server_name. Remote exploitation is possible. The exploit is publicly available. The vendor notes the device is EOL and past fixes are not fea...

9CVSS7.8AI score0.00463EPSS
Exploits0References4
Rows per page
Query Builder