Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

RedhatCVE
RedhatCVEadded 2026/01/21 4:21 p.m.4 views

CVE-2025-36410

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security...

4.3CVSS5.5AI score0.00064EPSS
Exploits0References1
Circl
Circladded 2026/01/20 7:12 p.m.3 views

CVE-2025-36410

creationtimestamp| type| source ---|---|--- 2026-01-20 19:12:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcuueqdnl323...

4.3CVSS5AI score0.00064EPSS
Exploits0References1
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-36410 Malicious code in test-mlw2-tatus-bebop (npm)

The package test-mlw2-tatus-bebop was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:33 p.m.3 views

CVE-2020-36410

A stored cross scripting XSS vulnerability in CMS Made Simple 2.2.14 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "Email address to receive notification of news submission" parameter under the "Options" module...

5.4CVSS5.6AI score0.00275EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2024/06/10 5:24 p.m.15 views

CVE-2024-36410 SuiteCRM authenticated SQL Injection in EmailUIAjax messages count controller

SuiteCRM is an open-source Customer Relationship Management CRM software application. In versions prior to 7.14.4 and 8.6.1, poor input validation allows for SQL Injection in EmailUIAjax messages count controller. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.6CVSS8AI score0.0009EPSS
Exploits0References1
OSV
OSVadded 2024/06/10 5:24 p.m.7 views

CVE-2024-36410 SuiteCRM authenticated SQL Injection in EmailUIAjax messages count controller

SuiteCRM is an open-source Customer Relationship Management CRM software application. In versions prior to 7.14.4 and 8.6.1, poor input validation allows for SQL Injection in EmailUIAjax messages count controller. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.6CVSS7.8AI score0.0009EPSS
Exploits0References3
Cloud Foundry
Cloud Foundryadded 2024/02/29 12:0 a.m.23 views

USN-6627-1: libde265 vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description It was discovered that libde265 could be made to read out of bounds. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a...

9.8CVSS7.4AI score0.00482EPSS
Exploits18Affected Software2
OpenVAS
OpenVASadded 2024/02/09 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-6627-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00482EPSS
Exploits18References2
Ubuntu
Ubuntuadded 2024/02/08 1:48 p.m.73 views

USN-6627-1: libde265 vulnerabilities

It was discovered that libde265 could be made to read out of bounds. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. CVE-2021-35452, CVE-2021-36411, CVE-2022-43238, CVE-2022-43241,...

9.8CVSS7.1AI score0.00482EPSS
Exploits18
Tenable Nessus
Tenable Nessusadded 2024/02/08 12:0 a.m.48 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : libde265 vulnerabilities (USN-6627-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6627-1 advisory. It was discovered that libde265 could be made to read out of bounds. If a user or automated system were tricked into...

9.8CVSS7.2AI score0.00482EPSS
Exploits18References19
Tenable Nessus
Tenable Nessusadded 2023/11/15 12:0 a.m.57 views

Security Updates for Microsoft Dynamics 365 (on-premises) (KB5032297) (November 2023)

The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...

7.6CVSS6AI score0.00228EPSS
Exploits0References5
Cvelist
Cvelistadded 2023/11/14 5:57 p.m.19 views

CVE-2023-36410 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

...

7.6CVSS7.7AI score0.00228EPSS
Exploits0References1
CVE
CVEadded 2023/11/14 5:57 p.m.86 views

CVE-2023-36410

CVE-2023-36410 affects Microsoft Dynamics 365 (on-premises) with a cross-site scripting (XSS) vulnerability. Public sources in the connected documents confirm the issue is an XSS vulnerability in on-prem Dynamics 365, capable of spoofing user interfaces and potentially exposing credentials. The p...

7.6CVSS6.2AI score0.00228EPSS
Exploits0References1Affected Software1
Kaspersky
Kasperskyadded 2023/11/14 12:0 a.m.27 views

KLA61976 Multiple vulnerabilities in Microsoft Dynamics

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 on-premises can be exploited remotely to spoof user...

7.6CVSS5.4AI score0.00228EPSS
Exploits0References9
OpenVAS
OpenVASadded 2023/03/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2023-0093)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.00482EPSS
Exploits46References7
OpenVAS
OpenVASadded 2022/12/16 12:0 a.m.19 views

Debian: Security Advisory (DLA-3240-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.7AI score0.00281EPSS
Exploits16References4
Tenable Nessus
Tenable Nessusadded 2022/12/16 12:0 a.m.26 views

Debian dla-3240 : libde265-0 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3240 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3240-1 [email protected]...

7.8CVSS6.9AI score0.00181EPSS
Exploits6References14
Circl
Circladded 2022/01/11 2:15 a.m.0 views

CVE-2021-36410

creationtimestamp| type| source ---|---|--- 2022-01-11 02:15:05+00:00| seen| https://t.me/cibsecurity/35214...

5.5CVSS6.1AI score0.00088EPSS
Exploits1References1
OSV
OSVadded 2022/01/10 11:15 p.m.1 views

DEBIAN-CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS6.2AI score0.00088EPSS
Exploits1References1
OSV
OSVadded 2022/01/10 11:15 p.m.30 views

CVE-2021-36410

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function putepelhvfallback when running program dec265...

5.5CVSS3.9AI score
Exploits0References3
Rows per page
Query Builder