Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в p7zip

7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition in affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability, but the attack vectors may vary depending ...

6.5CVSS6.8AI score0.01796EPSS
Exploits0References2
Circl
Circladded 2026/01/22 11:28 p.m.4 views

CVE-2026-24307

creationtimestamp| type| source ---|---|--- 2026-01-22 23:28:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md2dmgtemf2x 2026-01-23 00:29:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md2gzhkj6a2i 2026-02-13 04:55:22+00:00| seen|...

9.3CVSS4.8AI score0.00195EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/01/22 10:47 p.m.16 views

CVE-2026-24307 M365 Copilot Information Disclosure Vulnerability

...

9.3CVSS0.00195EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:37 a.m.4 views

CVE-2024-24307

Path Traversal vulnerability in Tunis Soft "Product Designer" productdesigner module for PrestaShop before version 1.178.36, allows a remote attacker to escalate privileges and obtain sensitive information via the ajaxProcessCropImage method...

7.5CVSS6.8AI score0.00076EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:10 p.m.5 views

CVE-2022-24307

Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access control because it does not compact incoming signed JSON-LD activities. JSON-LD signing has been supported since version 1.6.0...

9.8CVSS7AI score0.00367EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:4 p.m.8 views

CVE-2021-24307

The All in One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings before 4.1.0.2 enables authenticated users with "aioseotoolssettings" privilege most of the time admin to execute arbitrary code on the underlying host. Users can restore plugin's configuration by uploading a backup...

9CVSS7.7AI score0.41776EPSS
Exploits3References1
SUSE CVE
SUSE CVEadded 2024/11/23 12:30 a.m.1 views

SUSE CVE-2024-11612

7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on th...

6.5CVSS7.5AI score0.01796EPSS
Exploits0References3
NVD
NVDadded 2024/11/22 9:15 p.m.10 views

CVE-2024-11612

7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on th...

6.5CVSS0.01796EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/22 8:22 p.m.13 views

CVE-2024-11612 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability

7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on th...

6.5CVSS6.5AI score0.01796EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 8:22 p.m.105 views

CVE-2024-11612

CVE-2024-11612 describes a DoS in 7-Zip caused by a logic error during stream processing in CopyCoder, leading to an infinite loop. The vulnerability is exploitable remotely and requires interaction with the library, with attack vectors varying by implementation. Connected sources confirm the fla...

6.5CVSS6.3AI score0.01796EPSS
Exploits0References1Affected Software1
Oracle linux
Oracle linuxadded 2024/07/08 12:0 a.m.25 views

buildah security update

1.33.7-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.7-3 - rebuild for CVE-2024-1394 - Resolves: RHEL-24307...

7.5CVSS7.7AI score0.01379EPSS
Exploits0
Circl
Circladded 2024/03/03 9:26 a.m.0 views

CVE-2024-24307

creationtimestamp| type| source ---|---|--- 2024-03-03 09:26:35+00:00| seen| https://t.me/ctinow/198616 2024-03-03 09:26:39+00:00| seen| https://t.me/ctinow/198620...

7.5CVSS4.8AI score0.00076EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/03 12:0 a.m.9 views

CVE-2024-24307

Path Traversal vulnerability in Tunis Soft "Product Designer" productdesigner module for PrestaShop before version 1.178.36, allows a remote attacker to escalate privileges and obtain sensitive information via the ajaxProcessCropImage method...

6.7AI score0.00076EPSS
Exploits0References1
CVE
CVEadded 2024/03/03 12:0 a.m.52 views

CVE-2024-24307

CVE-2024-24307 describes a Path Traversal in the PrestaShop Product Designer module (productdesigner) for PrestaShop, before version 1.178.36. The vulnerability exists in the ajaxProcessCropImage() method and can let an unauthenticated or remote attacker escalate privileges and access sensitive i...

7.5CVSS6.7AI score0.00076EPSS
Exploits0References1Affected Software1
Circl
Circladded 2023/02/02 2:14 p.m.2 views

CVE-2020-24307

creationtimestamp| type| source ---|---|--- 2023-02-02 14:14:48+00:00| seen| https://t.me/cibsecurity/57390...

7.8CVSS7.5AI score0.00139EPSS
Exploits1References1
NVD
NVDadded 2023/02/02 12:15 p.m.22 views

CVE-2020-24307

An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. NOTE: third parties were unable to reproduce any scenario in which the claimed access of BUILTIN\Users:M is present...

7.8CVSS7.6AI score0.00139EPSS
Exploits1References3
OSV
OSVadded 2023/02/02 12:15 p.m.3 views

CVE-2020-24307

An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. NOTE: third parties were unable to reproduce any scenario in which the claimed access of BUILTIN\Users:M is present...

7.8CVSS6.9AI score
Exploits0References3
CVE
CVEadded 2023/02/02 12:0 a.m.176 views

CVE-2020-24307

CVE-2020-24307 affects mRemoteNG v1.76.20. The issue is an improper access control vulnerability that allows privilege escalation through a crafted executable file. The Packet Storm advisory confirms vulnerable version 1.76.20 and lists a fixed version: 1.76.20.24615. Exploitation notes in the pu...

7.8CVSS7.6AI score0.00139EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Stormadded 2023/01/31 12:0 a.m.1037 views

mRemoteNG 1.76.20 Privilege Escalation

mRemoteNG mRemoteNG v1.76.20 Privilege Escalation Detailed Information ------------------------------------------------------------------------------------------------------------------------------------------------------------------------ Product Name: mRemoteNG Vendor Home Page:...

0.7AI score0.00139EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2022/02/03 8:15 p.m.2 views

CVE-2022-24307

Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access control because it does not compact incoming signed JSON-LD activities. JSON-LD signing has been supported since version 1.6.0...

9.8CVSS7.2AI score0.00367EPSS
Exploits0References3
Rows per page
Query Builder