Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

213 matches found

Circl
Circladded 2026/02/25 8:41 a.m.2 views

CVE-2026-3167

creationtimestamp| type| source ---|---|--- 2026-02-25 08:41:07+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mfobvjvvuj2u 2026-02-25 09:11:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfodmcvj4f2x 2026-02-25 19:40:09+00:00| seen|...

9CVSS8.2AI score0.00125EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2026/02/19 12:0 a.m.4 views

Amazon Linux 2 : thunderbird, --advisory ALAS2-2026-3167 (ALAS-2026-3167)

The version of thunderbird installed on the remote host is prior to 140.7.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3167 advisory. Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox 146. CVE-2025-14327 CSS-based...

9.8CVSS9.3AI score0.00034EPSS
Exploits0References30
EUVD
EUVDadded 2026/01/17 12:30 a.m.2 views

EUVD-2026-3167

EUVD-2026-3167...

6.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.2 views

MiracleLinux 7 : postgresql-9.2.13-1.el7 (AXSA:2015-224:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-224:01 advisory. PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll nee...

9.8CVSS8AI score0.08329EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.7 views

MiracleLinux 4 : httpd-2.2.15-60.5.0.1.AXS4 (AXSA:2017-1918:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1918:04 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. CVE-2017-3167 In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.2...

9.8CVSS7.3AI score0.49498EPSS
Exploits3References5
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.7 views

MiracleLinux 7 : httpd-2.4.6-67.2.0.1.el7.AXS7 (AXSA:2017-2042:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2042:02 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. CVE-2017-3167 In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.2...

9.8CVSS7.3AI score0.64829EPSS
Exploits4References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2011-3167

Malware in sbrugna...

9.8CVSS9.2AI score0.00302EPSS
Exploits1References2
Circl
Circladded 2025/04/03 9:55 p.m.0 views

CVE-2025-3167

creationtimestamp| type| source ---|---|--- 2025-04-03 21:55:45+00:00| seen| https://t.me/cvedetector/22010...

7.5CVSS6.2AI score0.0087EPSS
Exploits1References1
NVD
NVDadded 2025/04/03 5:15 p.m.10 views

CVE-2025-3167

A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.07.52. This issue affects some unknown processing of the file /goform/VerAPIMant of the component API Interface. The manipulation of the argument getuid leads to denial of service. The attack may be initiated...

7.5CVSS0.0087EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/04/03 4:31 p.m.14 views

CVE-2025-3167 Tenda AC23 API Interface VerAPIMant denial of service

A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.07.52. This issue affects some unknown processing of the file /goform/VerAPIMant of the component API Interface. The manipulation of the argument getuid leads to denial of service. The attack may be initiated...

7.1CVSS0.0087EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/04/03 4:31 p.m.11 views

CVE-2025-3167 Tenda AC23 API Interface VerAPIMant denial of service

A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.07.52. This issue affects some unknown processing of the file /goform/VerAPIMant of the component API Interface. The manipulation of the argument getuid leads to denial of service. The attack may be initiated...

7.1CVSS7.1AI score0.0087EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.21 views

Linux Distros Unpatched Vulnerability : CVE-2017-3167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the apgetbasicauthpw by third- party modules outside of the authentication phase may lead to...

9.8CVSS7.8AI score0.08717EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/06 12:55 a.m.4 views

CVE-2022-3167

Improper Restriction of Rendered UI Layers or Frames in GitHub repository ikus060/rdiffweb prior to 2.4.1...

10CVSS6.7AI score0.00395EPSS
Exploits1References1
F5 Networks
F5 Networksadded 2024/10/25 12:0 a.m.41 views

K000148250: PostgreSQL vulnerabilities CVE-2016-0766, CVE-2015-3167, CVE-2015-0243, CVE-2015-0242, and CVE-2015-0241

Security Advisory Description CVE-2016-0766 PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings GUCS for PL/Java, which allows attackers to gain privileges via...

9CVSS8.5AI score0.06398EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2024/05/11 12:0 a.m.96 views

RHEL 5 : httpd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - httpd: modssl NULL pointer dereference CVE-2017-3169 - httpd: Weak Digest auth nonce generation in...

8.6AI score0.9384EPSS
Exploits14References13
OSV
OSVadded 2024/04/09 7:15 p.m.0 views

CVE-2024-3167

The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘twitterusername’ parameter in versions up to, and including, 2.2.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level...

6.4CVSS5.9AI score
Exploits0References3
CVE
CVEadded 2024/04/09 6:59 p.m.61 views

CVE-2024-3167

CVE-2024-3167 is an Ocean Extra for WordPress Stored Cross-Site Scripting via the twitter_username parameter in versions up to 2.2.6 (patch released with 2.2.7). Exploitation requires authenticated access (Contributor+), allowing injection of scripts that execute when users visit affected pages. ...

6.4CVSS5.7AI score0.00256EPSS
Exploits0References3Affected Software1
Patchstack
Patchstackadded 2024/04/09 12:0 a.m.9 views

WordPress Ocean Extra Plugin <= 2.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Ocean Extra Type Plugin Vulnerable versions = 2.2.6 Fixed in 2.2.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3167 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d97829d0efb6 Credits wesley wcraft Required...

6.4CVSS5.7AI score0.00256EPSS
Exploits0References3Affected Software1
Circl
Circladded 2024/02/23 10:51 p.m.2 views

CVE-2015-3167

creationtimestamp| type| source ---|---|--- 2024-02-23 22:51:19+00:00| seen| https://t.me/ctinow/192257...

7.5CVSS8.2AI score0.01812EPSS
Exploits0References1
Circl
Circladded 2024/01/03 7:6 p.m.0 views

CVE-2023-3167

creationtimestamp| type| source ---|---|--- 2024-01-03 19:06:40+00:00| seen| https://t.me/arpsyndicate/2344...

7.2CVSS6.8AI score0.00411EPSS
Exploits0References1
Rows per page
Query Builder