Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

RedhatCVE
RedhatCVEadded 2026/04/03 10:58 a.m.3 views

CVE-2026-29138

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to claim another user's PGP signature as their own...

7.5CVSS5.9AI score0.00046EPSS
Exploits0References1
Circl
Circladded 2026/04/02 10:16 a.m.1 views

CVE-2026-29138

creationtimestamp| type| source ---|---|--- 2026-04-02 10:16:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miixytt5ys2d 2026-04-16 21:19:51+00:00| seen| Telegram/3Rneua8sJN4acwbkH9WJwYA0S4fbpKs2cDcX7PKNKVaNXM 2026-04-16 21:19:58+00:00| published-proof-of-concept|...

7.5CVSS4.8AI score0.00046EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-29138

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.0001EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/05/22 7:35 p.m.7 views

CVE-2021-29138

A remote disclosure of privileged information vulnerability was discovered in Aruba ClearPass Policy Manager versions prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability...

6.5CVSS6.7AI score0.00284EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 3:29 p.m.6 views

CVE-2020-29138

Incorrect Access Control in the configuration backup path in SAGEMCOM F@ST3486 NET DOCSIS 3.0, software NET4.109.0, allows remote unauthenticated users to download the router configuration file via the /backupsettings.conf URI, when any valid session is running...

5.3CVSS7.2AI score0.00635EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/02/05 8:13 a.m.18 views

CVE-2024-29138

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joachim Jensen Restrict User Access – Membership Plugin with Force restrict-user-access.This issue affects Restrict User Access – Membership Plugin with Force: from n/a through = 2.5...

7.1CVSS7.2AI score0.06906EPSS
Exploits0References1
Circl
Circladded 2024/03/19 3:27 p.m.5 views

CVE-2024-29138

creationtimestamp| type| source ---|---|--- 2024-03-19 15:27:08+00:00| seen| https://t.me/ctinow/211613 2026-01-06 18:30:18+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-29138.yaml 2026-01-10 21:02:56+00:00| seen|...

7.1CVSS8.7AI score0.06906EPSS
Exploits0References3
NVD
NVDadded 2024/03/19 2:15 p.m.14 views

CVE-2024-29138

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joachim Jensen Restrict User Access – Membership Plugin with Force restrict-user-access.This issue affects Restrict User Access – Membership Plugin with Force: from n/a through = 2.5...

7.1CVSS6.9AI score0.06906EPSS
Exploits0References2
CVE
CVEadded 2024/03/19 1:40 p.m.66 views

CVE-2024-29138

The CVE-2024-29138 issue affects the WordPress Restrict User Access – Membership Plugin with Force (vulnerable:

7.1CVSS7.2AI score0.06906EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/03/19 1:40 p.m.14 views

CVE-2024-29138 WordPress Restrict User Access plugin <= 2.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joachim Jensen Restrict User Access – Membership Plugin with Force restrict-user-access.This issue affects Restrict User Access – Membership Plugin with Force: from n/a through = 2.5...

7.1CVSS7.2AI score0.06906EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/03/19 1:40 p.m.26 views

CVE-2024-29138 WordPress Restrict User Access plugin <= 2.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joachim Jensen Restrict User Access – Membership Plugin with Force restrict-user-access.This issue affects Restrict User Access – Membership Plugin with Force: from n/a through = 2.5...

7.1CVSS7.1AI score0.06906EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2024/03/18 12:0 a.m.1 views

VulnCheck KEV: CVE-2024-29138

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joachim Jensen Restrict User Access – Membership Plugin with Force restrict-user-access.This issue affects Restrict User Access – Membership Plugin with Force: from n/a through = 2.5...

6.1CVSS7.3AI score0.06906EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/03/18 12:0 a.m.13 views

WordPress Restrict User Access – Membership Plugin with Force Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS)

Software Restrict User Access – Membership Plugin with Force Type Plugin Vulnerable versions = 2.5 Fixed in 2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29138 Patch priority Medium CVSS severity Medium 7.1 Developer DEV Institute PSID 211a6e23f622 Credits...

7.1CVSS6.5AI score0.06906EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/05/10 8:34 p.m.143 views

CVE-2022-29138

Technical details (affected products/components, root cause, exploit information, or remediation) are not provided in the supplied documents. Monitor official disclosures from Microsoft and the referenced KB/MSRC pages for updates.

7CVSS8.1AI score0.00227EPSS
Exploits0References2Affected Software5
CVE
CVEadded 2021/04/29 12:25 p.m.45 views

CVE-2021-29138

Aruba ClearPass Policy Manager

6.5CVSS6.3AI score0.00284EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2020/11/27 3:7 p.m.71 views

CVE-2020-29138

Technical details such as affected firmware versions, root-cause specifics, and exploitation information are not publicly provided in the supplied documents. Monitor for updates from vendors and official advisories.

5.3CVSS5.4AI score0.00635EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/11/27 3:7 p.m.14 views

CVE-2020-29138

Incorrect Access Control in the configuration backup path in SAGEMCOM F@ST3486 NET DOCSIS 3.0, software NET4.109.0, allows remote unauthenticated users to download the router configuration file via the /backupsettings.conf URI, when any valid session is running...

5.5AI score0.00635EPSS
Exploits0References1
Openbugbounty
Openbugbountyadded 2017/01/05 3:34 p.m.10 views

ambiente.mendoza.gov.ar XSS vulnerability

Vulnerable URL: http://ambiente.mendoza.gov.ar/buscador?busqueda=%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3EpromptString.fromCharCode79,80,69,78,66,85,71,66,79,85,78,84,89%3C/SCRIPT%3Etab-1 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly...

6.3AI score
Exploits0
Openbugbounty
Openbugbountyadded 2017/01/05 3:10 p.m.7 views

cultura.mendoza.gov.ar XSS vulnerability

Vulnerable URL: http://cultura.mendoza.gov.ar/buscador?busqueda=%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3EalertString.fromCharCode79,80,69,78,66,85,71,66,79,85,78,84,89%3C/SCRIPT%3Etab-1 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly...

6.3AI score
Exploits0
Rows per page
Query Builder