Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.3 views

PT-2026-7827

CVE-2026-25980 - Apache OpenSSH Authentication Bypass CVE ID : CVE-2026-25980 Published : 2026年2月10日 05:16 | 1 小时,59 分钟 ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-25980

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided...

5.3CVSS5.2AI score0.00167EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 5:28 a.m.2 views

CVE-2023-25980

Cross-Site Request Forgery CSRF vulnerability in CAGE Web Design | Rolf van Gelder Optimize Database after Deleting Revisions plugin = 5.1 versions...

8.8CVSS8.9AI score0.0007EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:37 p.m.3 views

CVE-2021-25980

In Talkyard, versions v0.04.01 through v0.6.74-WIP-63220cb, v0.2020.22-WIP-b2e97fe0e through v0.2021.02-WIP-879ef3fe1 and tyse-v0.2021.02-879ef3fe1-regular through tyse-v0.2021.28-af66b6905-regular, are vulnerable to Host Header Injection. By luring a victim application-user to click on a link, a...

8.8CVSS7.1AI score0.02381EPSS
Exploits0
Circl
Circladded 2024/02/19 6:26 p.m.0 views

CVE-2024-25980

creationtimestamp| type| source ---|---|--- 2024-02-19 18:26:48+00:00| seen| https://t.me/ctinow/187856 2024-02-19 18:26:56+00:00| seen| https://t.me/ctinow/187863 2024-02-20 18:32:20+00:00| seen| https://t.me/arpsyndicate/3661 2024-03-08 11:51:30+00:00| seen| https://t.me/ctinow/203233...

5.3CVSS4.8AI score0.00167EPSS
Exploits0References4
NVD
NVDadded 2024/02/19 5:15 p.m.11 views

CVE-2024-25980

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers...

5.3CVSS4.9AI score0.00167EPSS
Exploits0References4
OSV
OSVadded 2024/02/19 5:15 p.m.8 views

CVE-2024-25980

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers...

5.3CVSS5.1AI score
Exploits0References4
UbuntuCve
UbuntuCveadded 2024/02/19 5:15 p.m.16 views

CVE-2024-25980

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers...

5.3CVSS5.9AI score0.00167EPSS
Exploits0References4
CVE
CVEadded 2024/02/19 4:32 p.m.97 views

CVE-2024-25980

CVE-2024-25980 affects Moodle’s H5P attempts report where Separate Groups mode restrictions were not honored, allowing visibility of users from other groups. The issue is described across multiple feeds (NVD entry for CVE-2024-25980, OSV entries, and Nessus/NASL summaries) as a group-visibility f...

5.3CVSS4.8AI score0.00167EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2024/02/19 4:32 p.m.13 views

CVE-2024-25980 Msa-24-0003: h5p attempts report did not respect activity group settings

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers...

4.3CVSS6.7AI score0.00167EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/02/19 4:32 p.m.21 views

CVE-2024-25980 Msa-24-0003: h5p attempts report did not respect activity group settings

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers...

4.3CVSS5.2AI score0.00167EPSS
Exploits0References4
Circl
Circladded 2023/10/04 2:11 p.m.1 views

CVE-2023-25980

creationtimestamp| type| source ---|---|--- 2023-10-04 14:11:55+00:00| seen| https://t.me/cibsecurity/71557...

8.8CVSS8.6AI score0.0007EPSS
Exploits0References1
CVE
CVEadded 2023/10/04 10:25 a.m.44 views

CVE-2023-25980

CVE-2023-25980 concerns the WordPress plugin “Optimize Database after Deleting Revisions” (CAGE Web Design) with CSRF vulnerability in versions

8.8CVSS6.5AI score0.0007EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2023/07/26 12:0 a.m.7 views

WordPress Optimize Database after Deleting Revisions Plugin <= 5.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Optimize Database after Deleting Revisions Type Plugin Vulnerable versions = 5.1 Fixed in 5.1.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25980 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4a07eadd0946...

8.8CVSS6.6AI score0.0007EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/03/29 4:37 p.m.84 views

CVE-2022-25980

Delta Electronics DIAEnergie is affected by a blind SQL injection vulnerability in HandlerCommon.ashx across all versions prior to 1.9, allowing an attacker to inject arbitrary SQL, access/modify data, and execute system commands. The issue is confirmed in the connected documents, which also list...

10CVSS9.8AI score0.0027EPSS
Exploits0References1Affected Software1
Circl
Circladded 2021/11/11 12:37 p.m.1 views

CVE-2021-25980

creationtimestamp| type| source ---|---|--- 2021-11-11 12:37:20+00:00| seen| https://t.me/cibsecurity/32235...

8.8CVSS8.1AI score0.02381EPSS
Exploits0References1
CVE
CVEadded 2021/11/11 7:10 a.m.50 views

CVE-2021-25980

CVE-2021-25980 describes a Host Header Injection vulnerability in Talkyard. Affected versions include v0.04.01–v0.6.74-WIP-63220cb, v0.2020.22-WIP-b2e97fe0e–v0.2021.02-WIP-879ef3fe1, and tyse-v0.2021.02–tyse-v0.2021.28-af66b6905-regular. An unauthenticated attacker can lure a user to click a link...

8.8CVSS8.9AI score0.02381EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2021/11/11 7:10 a.m.3 views

CVE-2021-25980 Talkyard - Host-Header Injection Leads to Account Takeover

In Talkyard, versions v0.04.01 through v0.6.74-WIP-63220cb, v0.2020.22-WIP-b2e97fe0e through v0.2021.02-WIP-879ef3fe1 and tyse-v0.2021.02-879ef3fe1-regular through tyse-v0.2021.28-af66b6905-regular, are vulnerable to Host Header Injection. By luring a victim application-user to click on a link, a...

8.8CVSS7.1AI score0.02381EPSS
Exploits0References2
Cvelist
Cvelistadded 2021/11/11 7:10 a.m.15 views

CVE-2021-25980 Talkyard - Host-Header Injection Leads to Account Takeover

In Talkyard, versions v0.04.01 through v0.6.74-WIP-63220cb, v0.2020.22-WIP-b2e97fe0e through v0.2021.02-WIP-879ef3fe1 and tyse-v0.2021.02-879ef3fe1-regular through tyse-v0.2021.28-af66b6905-regular, are vulnerable to Host Header Injection. By luring a victim application-user to click on a link, a...

8.8CVSS9AI score0.02381EPSS
Exploits0References2
Cvelist
Cvelistadded 1976/01/01 12:0 a.m.18 views

CVE-2026-25980

...

Exploits0
Rows per page
Query Builder