Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2026/05/27 8:13 p.m.7 views

CVE-2026-46620

e107 is a content management system CMS. Prior to 2.3.5, e107 CMS does not properly enforce CSRF token validation on comment moderation actions. The problem comes down to how sessionhandler::check handles CSRF tokens. Instead of requiring a token on every state-changing request, it only validates...

6.5CVSS5.8AI score0.00016EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/26 3:4 p.m.5 views

CVE-2026-46620

e107 is a content management system CMS. Prior to 2.3.5, e107 CMS does not properly enforce CSRF token validation on comment moderation actions. The problem comes down to how sessionhandler::check handles CSRF tokens. Instead of requiring a token on every state-changing request, it only validates...

6.5CVSS5.8AI score0.00016EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2025/11/10 5:21 p.m.1 views

EUVD-2025-46620

Malicious code in lina-jus15-sukiwir npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 6:55 p.m.2 views

CVE-2021-46620

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

5.5CVSS6AI score0.00547EPSS
Exploits0
CVE
CVEadded 2023/11/13 12:38 a.m.50 views

CVE-2023-46620

CVE-2023-46620 is a CSRF vulnerability in the WordPress DeepL API translation plugin (Fluenx DeepL API translation) affecting versions up to 2.4.1.1 (per Patchstack/NVD). The issue stems from missing CSRF protection, potentially allowing unauthenticated users to trigger actions. The vulnerability...

8.8CVSS6.4AI score0.00074EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2023/10/25 12:0 a.m.72 views

WordPress DeepL Pro API translation Plugin <= 2.4.1.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software DeepL Pro API translation Type Plugin Vulnerable versions = 2.4.1.1 Fixed in 2.4.1.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-46620 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 93ab7131fcdf Credits thien...

8.8CVSS6.6AI score0.00074EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2023/02/07 4:15 p.m.7 views

CVE-2022-46620

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

6.6AI score
Exploits0
Circl
Circladded 2022/02/18 10:41 p.m.0 views

CVE-2021-46620

creationtimestamp| type| source ---|---|--- 2022-02-18 22:41:26+00:00| seen| https://t.me/cibsecurity/37767...

5.5CVSS4.4AI score0.00547EPSS
Exploits0References1
CVE
CVEadded 2022/02/18 7:45 p.m.93 views

CVE-2021-46620

CVE-2021-46620 affects Bentley MicroStation CONNECT 10.16.0.80. The connected ZDI advisory (ZDI-22-207) describes a vulnerability in FBX file parsing where improper validation can cause a read past the end of an allocated buffer. This results in an information disclosure vulnerability; exploitati...

5.5CVSS5.2AI score0.00547EPSS
Exploits0References2Affected Software3
CVE
CVEadded 1976/01/01 12:0 a.m.29 views

CVE-2022-46620

CVE-2022-46620 entry is rejected/not used and does not represent an active vulnerability.

7.4AI score
Exploits0
Rows per page
Query Builder