Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

79 matches found

OSV
OSVadded 2025/12/08 7:19 a.m.1 views

ECHO-FD72-5132-E821

Bulletin has no description...

6.9AI score0.00058EPSS
Exploits0References1
Circl
Circladded 2025/05/24 9:20 p.m.10 views

CVE-2025-5132

creationtimestamp| type| source ---|---|--- 2025-05-24 21:20:09+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpx2yucf3r72 2025-05-25 01:35:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpxjgx4jqb2y...

8.8CVSS5.8AI score0.00154EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/05/24 9:0 p.m.6 views

CVE-2025-5132 Tmall Demo logout cross-site request forgery

A vulnerability was found in Tmall Demo up to 20250505. It has been rated as problematic. This issue affects some unknown processing of the file tmall/admin/account/logout. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed t...

5.3CVSS4.5AI score0.00154EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 11:25 a.m.6 views

CVE-2013-5132

Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service device crash by associating with the access point and then sending a short frame...

5.4CVSS6.6AI score0.00428EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/02/05 5:59 p.m.6 views

CVE-2019-5132

An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll GEM Raster parser of the Accusoft ImageGear 19.3.0 library. A specially crafted GEM file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victim...

9.8CVSS7.6AI score0.02248EPSS
Exploits1References1
Circl
Circladded 2024/03/07 10:7 a.m.1 views

CVE-2019-5132

creationtimestamp| type| source ---|---|--- 2024-03-07 10:07:00+00:00| seen| https://t.me/ctinow/202240...

9.8CVSS8.7AI score0.02248EPSS
Exploits1References1
NVD
NVDadded 2023/10/21 2:15 a.m.5 views

CVE-2023-5132

The Soisy Pagamento Rateale plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the parseRemoteRequest function in versions up to, and including, 6.0.1. This makes it possible for unauthenticated attackers with knowledge of an existing WooCommerc...

7.5CVSS7.2AI score0.01365EPSS
Exploits0References3
CVE
CVEadded 2023/10/21 1:53 a.m.46 views

CVE-2023-5132

CVE-2023-5132 affects the Soisy Pagamento Rateale WordPress plugin (≤ 6.0.1). The vulnerability arises from a missing capability check in parseRemoteRequest, allowing unauthenticated attackers who know an existing WooCommerce Order ID to access sensitive order data (e.g., name, address, email, an...

7.5CVSS7.2AI score0.01365EPSS
Exploits0References3Affected Software1
Patchstack
Patchstackadded 2023/10/21 12:0 a.m.9 views

WordPress Soisy Pagamento Rateale Plugin <= 6.0.1 is vulnerable to Broken Access Control

Software Soisy Pagamento Rateale Type Plugin Vulnerable versions = 6.0.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-5132 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID ea685dad7b8e Credits Francesco Carlucci...

7.5CVSS6.6AI score0.01365EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVEadded 2023/02/15 5:44 a.m.1 views

SUSE CVE-2012-5132

Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service application crash via a response with chunked transfer coding...

5CVSS8.8AI score0.01461EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2023/02/15 5:1 a.m.1 views

SUSE CVE-2016-5132

The Service Workers subsystem in Google Chrome before 52.0.2743.82 does not properly implement the Secure Contexts specification during decisions about whether to control a subframe, which allows remote attackers to bypass the Same Origin Policy via an https IFRAME element inside an http IFRAME...

8.8CVSS9AI score0.01594EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 4:50 a.m.1 views

SUSE CVE-2017-5132

Inappropriate implementation in V8 in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka incorrect WebAssembly stack manipulation...

8.8CVSS8.9AI score0.01369EPSS
Exploits0References6
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2017-0423)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.55771EPSS
Exploits6References11
CVE
CVEadded 2020/09/30 5:25 a.m.70 views

CVE-2020-5132

CVE-2020-5132 affects SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature. The issue is a misconfiguration that enables a DNS domain-name collision vulnerability: when internal domain names are exposed on the SSL-VPN authentication page, an attacker aware of internal domain names co...

5.3CVSS5.3AI score0.00174EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2019/12/03 9:25 p.m.77 views

CVE-2019-5132

CVE-2019-5132 affects Accusoft ImageGear 19.3.0 (igcore19d.dll GEM Raster parser). A crafted GEM file can trigger an out-of-bounds write, resulting in remote code execution. Root cause: out-of-bounds write in the GEM Raster parser. Exploitation requires a malformed file; TALOS notes the vulnerabi...

9.8CVSS8.9AI score0.02248EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/06/11 9:0 p.m.122 views

CVE-2018-5132

CVE-2018-5132 : The Find API for WebExtensions in Firefox can search privileged pages (for example, about:debugging) when those pages are open in a tab, potentially exposing protected data. Affected products/versions: Firefox

6.5CVSS6.9AI score0.00913EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVASadded 2018/04/07 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-3596-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.20177EPSS
Exploits2References3
NVD
NVDadded 2018/03/27 9:29 p.m.13 views

CVE-2014-5132

Avolve Software ProjectDox 8.1 allows remote attackers to enumerate users via vectors related to email addresses...

4.3CVSS4.6AI score0.00202EPSS
Exploits0References3
CVE
CVEadded 2018/03/27 9:0 p.m.40 views

CVE-2014-5132

CVE-2014-5132 affects Avolve Software ProjectDox 8.1. The vulnerability is a User Enumeration issue where a remote attacker can determine valid users via vectors related to email addresses. Documented details confirm that the application exposes user-existence information, enabling enumeration wi...

4.3CVSS4.6AI score0.00202EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2018/03/27 9:0 p.m.18 views

CVE-2014-5132

Avolve Software ProjectDox 8.1 allows remote attackers to enumerate users via vectors related to email addresses...

4.6AI score0.00202EPSS
Exploits0References3
Rows per page
Query Builder