Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

97 matches found

GithubExploit
GithubExploitadded 2026/02/12 5:40 p.m.126 views

Exploit for CVE-2021-3129

No d...

9.8CVSS5.4AI score0.94287EPSS
Exploits36
GithubExploit
GithubExploitadded 2026/01/30 5:0 p.m.139 views

Exploit for CVE-2021-3129

laravel-rce Laravel 8.4.2 RCE...

9.8CVSS7.2AI score0.94287EPSS
Exploits36
Amazon
Amazonadded 2026/01/21 12:0 a.m.5 views

Important: sox

Issue Overview: SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing. CVE-2022-50798 Affect...

5.6AI score0.00039EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : xmlrpc3-3.0-4.17.AXS4 (AXSA:2018-3129:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3129:01 advisory. xmlrpc: Deserialization of untrusted Java object through tag CVE-2016-5003 Tenable has extracted the preceding description block directly from the MiracleLin...

9.8CVSS8.1AI score0.41523EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:46 a.m.2 views

CVE-2023-3129

The URL Shortify WordPress plugin before 1.7.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.7AI score0.0031EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:41 p.m.13 views

CVE-2021-3129

Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of filegetcontents and fileputcontents. This is exploitable on sites using debug mode with Laravel before 8.4.2...

9.8CVSS8.2AI score0.94287EPSS
Exploits36References1
RedhatCVE
RedhatCVEadded 2025/04/04 9:37 p.m.13 views

CVE-2025-3129

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Access code allows Brute Force.This issue affects Access code: from 0.0.0 before 2.0.4...

4.8CVSS7.5AI score0.00314EPSS
Exploits0References3
NVD
NVDadded 2025/04/02 10:15 p.m.8 views

CVE-2025-3129

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Access code allows Brute Force.This issue affects Access code: from 0.0.0 before 2.0.4...

4.8CVSS0.00314EPSS
Exploits0References1
Circl
Circladded 2025/04/02 9:34 p.m.6 views

CVE-2025-3129

creationtimestamp| type| source ---|---|--- 2025-04-02 21:34:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10142 2025-04-02 23:01:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lluikvinnr2o 2025-04-03 01:01:17+00:00| seen| https://t.me/cvedetector/21912...

4.8CVSS4.8AI score0.00314EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/04/02 9:10 p.m.11 views

CVE-2025-3129 Access code - Moderately critical - Access bypass - SA-CONTRIB-2025-028

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Access code allows Brute Force.This issue affects Access code: from 0.0.0 before 2.0.4...

0.00314EPSS
Exploits0References1
CVE
CVEadded 2025/04/02 9:10 p.m.55 views

CVE-2025-3129

CVE-2025-3129 affects the Drupal Access code module. The vulnerability is caused by an improper restriction of excessive authentication attempts, enabling brute-force login for versions 0.0.0 through 2.0.3. Exploitation details are not provided in the available documents. The issue is mitigated b...

4.8CVSS7.4AI score0.00314EPSS
Exploits0References1Affected Software1
Hacker One
Hacker Oneadded 2024/10/08 5:25 a.m.19 views

MTN Group: Information disclosure due to debug mode enabled at Laravel instance https://mpos.mtn.co.sz/

The Laravel framework contained a vulnerability known as CVE-2021-3129, which allowed remote code execution due to unsafe usage of PHP in the Ignition debug module. This vulnerability was relatively easy to exploit and did not require user authentication, resulting in a high CVSS score of 9.8. Th...

9.8CVSS8.3AI score0.94287EPSS
Exploits36
GithubExploit
GithubExploitadded 2024/09/29 5:9 a.m.592 views

Exploit for CVE-2021-3129

CVE-2021-3129 Laravel Ignition RCE Exploit This is a Python e...

9.8CVSS8.6AI score0.94287EPSS
Exploits36
Circl
Circladded 2024/09/19 3:32 p.m.0 views

CVE-2023-3129

creationtimestamp| type| source ---|---|--- 2024-09-19 15:32:04+00:00| exploited| https://t.me/FanatixRipperNews/693 2024-09-19 15:32:04+00:00| published-proof-of-concept| Telegram/M-RM6JUeRS-yLbXH47dffFKYpTJTdkiqAiI6xYlcLmjs7Mv7LQ 2024-09-19 15:32:09+00:00| published-proof-of-concept|...

4.8CVSS5.8AI score0.0031EPSS
Exploits2References5
Tenable Nessus
Tenable Nessusadded 2024/04/29 12:0 a.m.23 views

Facade Ignition < 1.16.14 / 2.x < 2.4.2 / 2.5.x < 2.5.2 RCE

The version of Facade Ignition installed of the remote host is prior to 1.16.14, or 2.x prior to 2.4.2, or 2.5.x prior to 2.5.2. It is, therefore, affected by a remote code execution vulnerability. Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attacke...

9.8CVSS9.2AI score0.94287EPSS
Exploits36References2
Vulnrichment
Vulnrichmentadded 2024/04/01 4:0 p.m.8 views

CVE-2024-3129 SourceCodester Image Accordion Gallery App add-image.php unrestricted upload

A vulnerability was found in SourceCodester Image Accordion Gallery App 1.0. It has been classified as critical. This affects an unknown part of the file /endpoint/add-image.php. The manipulation of the argument imagename leads to unrestricted upload. It is possible to initiate the attack remotel...

6.5CVSS6.9AI score0.00079EPSS
Exploits1References4
Cvelist
Cvelistadded 2024/04/01 4:0 p.m.10 views

CVE-2024-3129 SourceCodester Image Accordion Gallery App add-image.php unrestricted upload

A vulnerability was found in SourceCodester Image Accordion Gallery App 1.0. It has been classified as critical. This affects an unknown part of the file /endpoint/add-image.php. The manipulation of the argument imagename leads to unrestricted upload. It is possible to initiate the attack remotel...

6.5CVSS6.7AI score0.00079EPSS
Exploits1References4
GithubExploit
GithubExploitadded 2024/01/15 7:12 a.m.454 views

Exploit for CVE-2021-3129

CVE-2021-3129 Instructions: Note: A PHP environment is...

9.8CVSS7.2AI score0.94287EPSS
Exploits36
GithubExploit
GithubExploitadded 2023/10/22 2:25 p.m.317 views

Exploit for CVE-2021-3129

Mass Scanner for CVE-...

9.8CVSS9.7AI score0.94287EPSS
Exploits36
GithubExploit
GithubExploitadded 2023/10/22 2:25 p.m.355 views

Exploit for CVE-2021-3129

Mass Scanner for CVE-...

9.8CVSS9.7AI score0.94287EPSS
Exploits36
Rows per page
Query Builder