Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

Circl
Circladded 2026/03/06 2:3 p.m.3 views

CVE-2018-25196

creationtimestamp| type| source ---|---|--- 2026-03-06 14:03:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgfi4aqxzl2e...

8.8CVSS5.8AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/28 1:55 a.m.5 views

CVE-2026-25196

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the Wi-Fi SSID and/or password fields can lead to remote code execution when the configuration is...

8.8CVSS6.6AI score0.00043EPSS
Exploits0References1
NVD
NVDadded 2026/02/27 2:16 a.m.5 views

CVE-2026-25196

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into the Wi-Fi SSID and/or password fields can lead to remote code execution when the configuration is...

8.8CVSS0.00043EPSS
Exploits0References3
Circl
Circladded 2026/02/26 11:0 a.m.1 views

CVE-2026-25196

creationtimestamp| type| source ---|---|--- 2026-02-26 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10 2026-02-27 03:28:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfsrfahbjp2n 2026-02-27 04:30:14+00:00| seen|...

8.8CVSS5.3AI score0.00043EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/01/09 12:41 p.m.4 views

CVE-2023-25196

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2...

4.3CVSS7.5AI score0.00989EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:23 a.m.4 views

CVE-2024-25196

Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2controller process. This vulnerability is triggerd via sending a crafted .yaml file...

3.3CVSS7.8AI score0.00058EPSS
Exploits1References1
Circl
Circladded 2025/02/19 11:46 p.m.1 views

CVE-2025-25196

creationtimestamp| type| source ---|---|--- 2025-02-19 23:46:03+00:00| seen| https://t.me/cvedetector/18481 2025-08-25 13:32:05+00:00| seen| MISP/9ca82492-7deb-4197-a6f1-191e121eef96...

9.8CVSS8.5AI score0.00097EPSS
Exploits0References1
Wolfi
Wolfiadded 2025/02/19 9:15 p.m.51 views

CVE-2025-25196 vulnerabilities

Vulnerabilities for packages: grafana...

9.8CVSS7.2AI score0.00097EPSS
Exploits0
Circl
Circladded 2024/02/20 3:27 p.m.0 views

CVE-2024-25196

creationtimestamp| type| source ---|---|--- 2024-02-20 15:27:18+00:00| seen| https://t.me/ctinow/188616 2024-02-21 15:33:03+00:00| seen| https://t.me/arpsyndicate/3848 2024-03-08 14:51:27+00:00| seen| https://t.me/ctinow/203353...

3.3CVSS4.8AI score0.00058EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2023/08/02 12:0 a.m.8 views

MOXA NPort IAW5000A-I/O Series Improper Restriction of Excessive Authentication Attempts (CVE-2020-25196)

The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows SSH/Telnet sessions, which may be vulnerable to brute force attacks to bypass authentication. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

9.8CVSS8.3AI score0.0011EPSS
Exploits0References2
Circl
Circladded 2023/03/28 4:44 p.m.1 views

CVE-2023-25196

creationtimestamp| type| source ---|---|--- 2023-03-28 16:44:43+00:00| seen| https://t.me/cibsecurity/60889...

4.3CVSS4.7AI score0.00989EPSS
Exploits0References1
OSV
OSVadded 2023/03/28 12:15 p.m.14 views

CVE-2023-25196

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2...

4.3CVSS7.8AI score
Exploits0References1
NVD
NVDadded 2023/03/28 12:15 p.m.15 views

CVE-2023-25196

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2...

4.3CVSS5AI score0.00989EPSS
Exploits0References1
CVE
CVEadded 2023/03/28 11:16 a.m.62 views

CVE-2023-25196

The CVE-2023-25196 entry concerns an SQL Injection vulnerability in Apache Fineract. Affected software is Apache Fineract versions 1.4 through 1.8.2 (as per multiple sources). The root cause is improper neutralization of special elements used in SQL commands, enabling authorized users to change o...

4.3CVSS5AI score0.00989EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/28 11:16 a.m.10 views

CVE-2023-25196 Apache Fineract: SQL injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2...

7.5AI score0.00989EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/03/28 11:16 a.m.13 views

CVE-2023-25196 Apache Fineract: SQL injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2...

5.4AI score0.00989EPSS
Exploits0References1
Circl
Circladded 2022/02/15 8:35 p.m.5 views

CVE-2022-25196

creationtimestamp| type| source ---|---|--- 2022-02-15 20:35:37+00:00| seen| https://t.me/cibsecurity/37514...

5.4CVSS5.5AI score0.00021EPSS
Exploits0References1
NVD
NVDadded 2022/02/15 5:15 p.m.19 views

CVE-2022-25196

Jenkins GitLab Authentication Plugin 1.13 and earlier records the HTTP Referer header as part of the URL query parameters when the authentication process starts, allowing attackers with access to Jenkins to craft a URL that will redirect users to an attacker-specified URL after logging in...

5.4CVSS0.00021EPSS
Exploits0References2
CVE
CVEadded 2022/02/15 4:11 p.m.146 views

CVE-2022-25196

CVE-2022-25196 affects the Jenkins GitLab Authentication Plugin (1.13 and earlier). The vulnerability arises because the plugin records the HTTP Referer header as part of the URL query parameters at the start of authentication, enabling an attacker with Jenkins access to craft a login URL that re...

5.4CVSS5.6AI score0.00021EPSS
Exploits0References2Affected Software1
Circl
Circladded 2020/12/23 7:25 p.m.3 views

CVE-2020-25196

creationtimestamp| type| source ---|---|--- 2020-12-23 19:25:34+00:00| seen| https://t.me/cibsecurity/21235...

9.8CVSS8.7AI score0.0011EPSS
Exploits0References1
Rows per page
Query Builder