Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

97 matches found

Nuclei
Nucleiadded yesterday84 views

Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49 and 2.4.50. An attacker could use a path traversal attack to map URLs to files outside the expected document root. If files outside of the document root are not protected by "require all denied" these requests ca...

9.8CVSS8.8AI score0.99964EPSS
Exploits60References5
CBLMariner
CBLMarineradded 4 days ago5 views

CVE-2026-42013 affecting package gnutls for versions less than 3.8.13-1

CVE-2026-42013 affecting package gnutls for versions less than 3.8.13-1. An upgraded version of the package is available that resolves this issue...

8.2CVSS5.2AI score0.0036EPSS
Exploits0
Circl
Circladded 2026/05/26 11:2 p.m.6 views

CVE-2026-42013

creationtimestamp| type| source ---|---|--- 2026-05-26 23:02:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mms3xxz5sd2z...

8.2CVSS5.7AI score0.0036EPSS
Exploits0References1
OSV
OSVadded 2026/05/26 10:16 p.m.0 views

DEBIAN-CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.0036EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/05/26 9:29 p.m.2 views

CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.0036EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/05/25 12:0 a.m.10 views

Debian dla-4595 : gnutls-bin - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4595 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4595-1 [email protected]...

9.8CVSS6.1AI score0.00947EPSS
Exploits1References24
OSV
OSVadded 2026/05/22 1:18 p.m.2 views

OESA-2026-2403 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

9.8CVSS5.7AI score0.00823EPSS
Exploits0References7
OSV
OSVadded 2026/05/03 6:12 a.m.2 views

BELL-CVE-2026-42013

Bulletin has no description...

8.2CVSS5.7AI score0.0036EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2026/05/01 2:3 a.m.3 views

SUSE CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

6.5CVSS5.8AI score0.0036EPSS
Exploits0References12
OSV
OSVadded 2026/04/30 12:0 a.m.1 views

UBUNTU-CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

8.2CVSS5.8AI score0.0036EPSS
Exploits0References4
GithubExploit
GithubExploitadded 2026/01/24 4:34 p.m.177 views

Exploit for Path Traversal in Apache Http_Server

Apache 2.4.50 - Path Traversal or Remote Code Execution CVE-20...

9.8CVSS5.7AI score0.99964EPSS
Exploits60
GithubExploit
GithubExploitadded 2025/10/28 11:45 a.m.153 views

Exploit for Path Traversal in Apache Http_Server

Apache-CVE-2021-42013-RCE-Exploit A powerful an...

9.8CVSS8.3AI score0.99992EPSS
Exploits169
GithubExploit
GithubExploitadded 2025/09/05 9:39 p.m.164 views

Exploit for Path Traversal in Apache Http_Server

!bannerhttps://img.shields.io/badge/ApachePathTraversal-RCEC...

9.8CVSS7.1AI score0.99964EPSS
Exploits60
RedhatCVE
RedhatCVEadded 2025/05/23 7:8 a.m.3 views

CVE-2024-42013

In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of...

6.4CVSS7.3AI score0.00153EPSS
Exploits0References1
Circl
Circladded 2025/03/04 9:1 p.m.8 views

CVE-2012-42013

creationtimestamp| type| source ---|---|--- 2025-03-04 21:01:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3ljleeqjnfo2u...

7.2AI score
Exploits0References1
GithubExploit
GithubExploitadded 2025/01/30 1:28 a.m.331 views

Exploit for Path Traversal in Apache Http_Server

CVE-2021-42013 - Apache 2.4.50 Path Traversal & Remote Code Exec...

9.8CVSS9.7AI score0.99964EPSS
Exploits60
NVD
NVDadded 2025/01/22 4:15 p.m.14 views

CVE-2024-42013

In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of...

6.4CVSS0.00153EPSS
Exploits0References2
CVE
CVEadded 2025/01/22 12:0 a.m.51 views

CVE-2024-42013

CVE-2024-42013 affects GRAU DATA Blocky/Blocky-Gui prior to 3.1. The issue is described as a Client-Side Enforcement of Server-Side Security vulnerability that allows an attacker with Windows administrative/debugging privileges to patch a binary in memory or on disk to bypass the password login a...

6.4CVSS7.3AI score0.00153EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/01/22 12:0 a.m.10 views

CVE-2024-42013

In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of...

0.00153EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.2857 views

Apache 2.4.49/2.4.50 Traversal Remote Code Execution Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache 2.4.49/2.4.50 Traversal RCE scanner', 'Description' = %q This module scans for an unauthenticated RCE vulnerability which exists in Apache...

9.8CVSS7.4AI score0.99992EPSS
Exploits169
Rows per page
Query Builder