Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

NVD
NVDadded 2026/03/05 6:16 a.m.2 views

CVE-2026-28110

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Playlist all-in-one-bannerWithPlaylist allows Reflected XSS.This issue affects LambertGroup - AllInOne - Banner with Playlist: from n/a through =...

7.1CVSS0.00146EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/05 5:54 a.m.31 views

CVE-2026-28110 WordPress LambertGroup - AllInOne - Banner with Playlist plugin <= 3.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup LambertGroup - AllInOne - Banner with Playlist all-in-one-bannerWithPlaylist allows Reflected XSS.This issue affects LambertGroup - AllInOne - Banner with Playlist: from n/a through =...

7.1CVSS0.00146EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 11:25 a.m.4 views

CVE-2021-28110

/exec in TranzWare e-Commerce Payment Gateway TWEC PG before 3.1.27.5 had a vulnerability in its XML parser...

7.5CVSS7AI score0.00978EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/07/03 12:0 a.m.27 views

CBL Mariner 2.0 Security Update: telegraf (CVE-2024-28110)

The version of telegraf installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28110 advisory. - Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior t...

7.5CVSS7AI score0.00661EPSS
Exploits0References2
CBLMariner
CBLMarineradded 2024/07/02 11:30 p.m.16 views

CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1

CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00661EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2024/06/27 10:52 a.m.47 views

Critical: Red Hat Security Advisory: OpenShift Container Platform 4.16.0 security and extras update

Red Hat OpenShift Container Platform release 4.16.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...

9.8CVSS7AI score0.93305EPSS
Exploits4References40
RedHat Linux
RedHat Linuxadded 2024/03/14 3:6 p.m.46 views

Moderate: Red Hat Security Advisory: Release of OpenShift Serverless 1.32.0

Red Hat OpenShift Serverless version 1.32.0 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...

7.5CVSS6.8AI score0.00661EPSS
Exploits0References5
OSV
OSVadded 2024/03/06 10:15 p.m.3 views

AZL-35751 CVE-2024-28110 affecting package telegraf for versions less than 1.31.0-1

Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...

7.5CVSS7AI score0.00661EPSS
Exploits0References1
Chainguard
Chainguardadded 2024/03/06 10:15 p.m.25 views

CVE-2024-28110 vulnerabilities

Vulnerabilities for packages: guac, falcosidekick-fips, falcosidekick, keda-fips...

7.5CVSS6.8AI score0.00661EPSS
Exploits0
Wolfi
Wolfiadded 2024/03/06 10:15 p.m.30 views

CVE-2024-28110 vulnerabilities

Vulnerabilities for packages: falcosidekick, guac...

7.5CVSS6.8AI score0.00661EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2024/03/06 9:12 p.m.20 views

CVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials

Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...

7.5CVSS6.6AI score0.00661EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/03/06 9:12 p.m.33 views

CVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials

Go SDK for CloudEvents is the official CloudEvents SDK to integrate applications with CloudEvents. Prior to version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper causes the go-sdk to leak credentials to arbitrary endpoints. When...

7.5CVSS7.5AI score0.00661EPSS
Exploits0References3
CVE
CVEadded 2024/03/06 9:12 p.m.370 views

CVE-2024-28110

The CVE-2024-28110 issue affects the Go SDK for CloudEvents. Before version 2.15.2, using cloudevents.WithRoundTripper to create a cloudevents.Client with an authenticated http.RoundTripper can cause credentials to be leaked by modifying http.DefaultClient’s Transport, leading to credentials bein...

7.5CVSS7.5AI score0.00661EPSS
Exploits0References3Affected Software1
Circl
Circladded 2023/03/16 7:30 p.m.4 views

CVE-2023-28110

creationtimestamp| type| source ---|---|--- 2023-03-16 19:30:54+00:00| seen| https://t.me/cibsecurity/60173...

9.9CVSS8.7AI score0.00848EPSS
Exploits1References1
CVE
CVEadded 2023/03/16 4:18 p.m.64 views

CVE-2023-28110

CVE-2023-28110 affects Jumpserver’s Koko component (Go version of coco). Before v2.28.8, using illegal tokens to connect to a Kubernetes cluster through Koko enables a command injection that can disrupt the Koko container environment and impact normal operation. The issue has a fixed release in v...

9.9CVSS7.6AI score0.00848EPSS
Exploits1References2Affected Software2
Circl
Circladded 2022/05/10 4:55 p.m.5 views

CVE-2022-28110

creationtimestamp| type| source ---|---|--- 2022-05-10 16:55:09+00:00| seen| https://t.me/cibsecurity/42234...

9.8CVSS7.3AI score0.00881EPSS
Exploits0References1
OSV
OSVadded 2022/05/10 12:15 p.m.2 views

CVE-2022-28110

Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page...

9.8CVSS5.8AI score0.00881EPSS
Exploits0References2
NVD
NVDadded 2022/05/10 12:15 p.m.15 views

CVE-2022-28110

Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page...

9.8CVSS0.00881EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/05/10 12:15 p.m.2 views

CVE-2022-28110

Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page...

9.8CVSS6AI score0.00881EPSS
Exploits0References4
CVE
CVEadded 2022/05/10 12:1 p.m.60 views

CVE-2022-28110

CVE-2022-28110 : Hotel Management System v1.0 is vulnerable to a SQL injection via the username parameter on the login page. The issue allows injected SQL to affect data confidentiality, integrity, and availability (CVSSv3.1 base score 9.8, CRITICAL). Exploitation status or in‑the‑wild details ar...

9.8CVSS9.8AI score0.00881EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder