Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 2025/11/10 5:21 p.m.0 views

EUVD-2025-46671

Malicious code in laila-lontong63-sukiwir npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 6:55 p.m.2 views

CVE-2021-46671

options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client...

5.3CVSS6.8AI score0.0012EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/04/10 3:17 p.m.13 views

CVE-2024-46671

An Incorrect User Management vulnerability CWE-286 in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard...

6.2CVSS6.7AI score0.00168EPSS
Exploits0References1
Circl
Circladded 2025/04/08 2:47 p.m.2 views

CVE-2024-46671

creationtimestamp| type| source ---|---|--- 2025-04-08 14:47:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10915 2025-04-08 17:22:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmcygejqeu2v 2025-04-08 18:11:02+00:00| seen| https://t.me/cvedetector/22468...

7.2CVSS5.7AI score0.00168EPSS
Exploits0References3
NVD
NVDadded 2025/04/08 2:15 p.m.12 views

CVE-2024-46671

An Incorrect User Management vulnerability CWE-286 in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard...

7.2CVSS0.00168EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/08 2:2 p.m.6 views

CVE-2024-46671

An Incorrect User Management vulnerability CWE-286 in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard...

6.2CVSS6.9AI score0.00168EPSS
Exploits0References1
CVE
CVEadded 2025/04/08 2:2 p.m.57 views

CVE-2024-46671

FortiWeb contains an Incorrect User Management (CWE-286) vulnerability affecting FortiWeb versions 7.6.2 and below, 7.4.6 and below, 7.2.10 and below, and 7.0.11 and below. An authenticated attacker with at least read-only admin privileges can perform operations on the dashboard of other administ...

7.2CVSS6.9AI score0.00168EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/04/08 2:2 p.m.11 views

CVE-2024-46671

An Incorrect User Management vulnerability CWE-286 in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard...

6.2CVSS0.00168EPSS
Exploits0References1
Circl
Circladded 2023/12/16 2:12 p.m.2 views

CVE-2023-46671

creationtimestamp| type| source ---|---|--- 2023-12-16 14:12:30+00:00| seen| https://t.me/ctinow/155408...

8CVSS6.2AI score0.00255EPSS
Exploits0References1
OSV
OSVadded 2023/12/13 7:15 a.m.5 views

CVE-2023-46671

An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs in the event of an error. Elastic has released Kibana 8.11.1 which resolves this issue. The error message recorded in the log may contain account credentials for the kibanasystem user, API Keys, and...

6.5CVSS6.3AI score
Exploits0References1
NVD
NVDadded 2023/12/13 7:15 a.m.12 views

CVE-2023-46671

An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs in the event of an error. Elastic has released Kibana 8.11.1 which resolves this issue. The error message recorded in the log may contain account credentials for the kibanasystem user, API Keys, and...

8CVSS0.00255EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/12/13 6:57 a.m.21 views

CVE-2023-46671 Kibana Insertion of Sensitive Information into Log File

An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs in the event of an error. Elastic has released Kibana 8.11.1 which resolves this issue. The error message recorded in the log may contain account credentials for the kibanasystem user, API Keys, and...

8CVSS7.9AI score0.00255EPSS
Exploits0References1
CVE
CVEadded 2023/12/13 6:57 a.m.55 views

CVE-2023-46671

CVE-2023-46671 affects Elastic Kibana

8CVSS6.9AI score0.00255EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2023/11/24 4:21 a.m.53 views

CVE-2023-46671

A flaw was found in Kibana, where exposure of sensitive information in log files may occur. In some uncommon conditions, if error messages are returned, the log may contain account credentials for the kibanasystem 64 user, API Keys, and credentials of Kibana end-users...

4.8CVSS6.8AI score0.00255EPSS
Exploits0References4
OpenVAS
OpenVASadded 2023/11/16 12:0 a.m.18 views

Elastic Kibana 8.0.x < 8.11.1 Information Disclosure Vulnerability (ESA-2023-25)

Kibana is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:kibana";...

8CVSS5.9AI score0.00255EPSS
Exploits0References1
OpenVAS
OpenVASadded 2023/09/05 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-6334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.00758EPSS
Exploits3References2
Ubuntu
Ubuntuadded 2023/09/04 10:25 a.m.57 views

USN-6334-1: atftp vulnerabilities

Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to the server to cause a crash. CVE-2020-6097 Andreas B. Mundt discovered that atftp did not properly manage certain inputs. A remote attacker could send a...

7.5CVSS6.7AI score0.00758EPSS
Exploits3
OpenVAS
OpenVASadded 2022/03/18 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:0881-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.0012EPSS
Exploits1References4
OSV
OSVadded 2022/03/16 1:43 p.m.4 views

SUSE-SU-2022:0881-1 Security update for atftp

This update for atftp fixes the following issues: - CVE-2021-46671: Fixed a potential information leak in atftpd bsc1195619...

5.3CVSS5.1AI score0.0012EPSS
Exploits1References3
Circl
Circladded 2022/02/05 12:31 a.m.2 views

CVE-2021-46671

creationtimestamp| type| source ---|---|--- 2022-02-05 00:31:15+00:00| seen| https://t.me/cibsecurity/36886...

5.3CVSS6.2AI score0.0012EPSS
Exploits1References1
Rows per page
Query Builder