Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

92 matches found

RedhatCVE
RedhatCVEadded 2026/04/04 11:2 a.m.3 views

CVE-2026-5458

A weakness has been identified in Noelse Individuals & Pro App up to 2.1.7 on Android. This impacts an unknown function of the file com/reactnative/antelop/BuildConfig.java of the component com.afone.noelse. This manipulation of the argument SEGMENTWRITEKEY causes use of hard-coded cryptographic...

4.8CVSS5.4AI score0.00005EPSS
Exploits0References1
Circl
Circladded 2026/04/03 8:25 a.m.0 views

CVE-2026-5458

creationtimestamp| type| source ---|---|--- 2026-04-03 08:25:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3milcbynbfi22...

4.8CVSS5.9AI score0.00005EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : php:7.4 (AXSA:2024-9405:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9405:01 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing...

9.8CVSS8AI score0.29385EPSS
Exploits13References12
Tenable Nessus
Tenable Nessusadded 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: php:8.2 (TSSA-2024:1122)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1122 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.6AI score0.08698EPSS
Exploits5References7
RedhatCVE
RedhatCVEadded 2025/05/23 4:31 a.m.4 views

CVE-2023-5458

The CITS Support svg, webp Media and TTF,OTF File Upload WordPress plugin before 3.0 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads...

5.4CVSS5.9AI score0.00222EPSS
Exploits2References1
Oracle linux
Oracle linuxadded 2025/05/22 12:0 a.m.14 views

php security update

8.0.30-3 - Fix libxml streams use wrong content-type header when requesting a redirected resource CVE-2025-1219 - Fix Stream HTTP wrapper header check might omit basic auth header CVE-2025-1736 - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes CVE-2025-1861 - Fix Streams HTTP...

6.3CVSS8.5AI score0.15416EPSS
Exploits12
Tenable Nessus
Tenable Nessusadded 2025/05/13 12:0 a.m.6 views

RHEL 9 : php (RHSA-2025:7315)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7315 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

8.2CVSS7.6AI score0.15416EPSS
Exploits10References23
Circl
Circladded 2025/02/22 7:21 p.m.1 views

CVE-2024-5458

creationtimestamp| type| source ---|---|--- 2025-02-22 19:21:29+00:00| seen| Telegram/m0mVz8qFB9qlISngYPlyPRRJ1Hle5f9hkKLn1fbjn2mkiyKRFA 2025-03-14 14:45:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7557...

5.3CVSS6.3AI score0.03579EPSS
Exploits1References1
OSV
OSVadded 2024/12/19 4:19 a.m.31 views

RLSA-2024:10950 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.8AI score0.08698EPSS
Exploits5References7
OSV
OSVadded 2024/12/19 4:19 a.m.18 views

RLSA-2024:10949 Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.8AI score0.08698EPSS
Exploits5References7
Tenable Nessus
Tenable Nessusadded 2024/12/19 12:0 a.m.20 views

AlmaLinux 8 : php:7.4 (ALSA-2024:10952)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:10952 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing erro...

9.8CVSS7.8AI score0.29385EPSS
Exploits13References13
Tenable Nessus
Tenable Nessusadded 2024/12/13 12:0 a.m.16 views

Oracle Linux 8 : php:7.4 (ELSA-2024-10952)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10952 advisory. - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered...

9.8CVSS7.7AI score0.29385EPSS
Exploits13References12
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.21 views

RHEL 9 : php:8.1 (RHSA-2024:10950)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10950 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

7.5CVSS7.2AI score0.15416EPSS
Exploits7References15
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.18 views

RHEL 8 : php:7.4 (RHSA-2024:10952)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10952 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common...

9.8CVSS7.9AI score0.29385EPSS
Exploits13References26
Tenable Nessus
Tenable Nessusadded 2024/12/11 12:0 a.m.22 views

RHEL 9 : php:8.2 (RHSA-2024:10949)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10949 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

7.5CVSS7.2AI score0.15416EPSS
Exploits7References16
OSV
OSVadded 2024/12/11 12:0 a.m.18 views

ALSA-2024:10951 Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.7AI score0.15416EPSS
Exploits7References14
Tenable Nessus
Tenable Nessusadded 2024/10/14 12:0 a.m.23 views

Debian dla-3920 : libapache2-mod-php7.4 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3920 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3920-1 [email protected]...

7.5CVSS7.5AI score0.07003EPSS
Exploits5References14
Tenable Nessus
Tenable Nessusadded 2024/09/06 12:0 a.m.24 views

Tenable Security Center Multiple Vulnerabilities (TNS-2024-12)

According to its self-reported version, the Tenable Security Center running on the remote host is . It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-12 advisory. - Security Center leverages third-party software to help provide underlying functionality. One of t...

8.8CVSS7.2AI score0.03579EPSS
Exploits3References4
Amazon
Amazonadded 2024/08/15 12:0 a.m.2 views

Medium: php8.2

Issue Overview: The opensslprivatedecrypt function in PHP, when using PKCS1 padding OPENSSLPKCS1PADDING, which is the default, is vulnerable to the Marvin Attack unless it is used with an OpenSSL version that includes the changes from this pull request: https://github.com/openssl/openssl/pull/138...

5.9CVSS7.2AI score0.03579EPSS
Exploits2
Amazon
Amazonadded 2024/08/15 12:0 a.m.6 views

Medium: php8.2

Issue Overview: The opensslprivatedecrypt function in PHP, when using PKCS1 padding OPENSSLPKCS1PADDING, which is the default, is vulnerable to the Marvin Attack unless it is used with an OpenSSL version that includes the changes from this pull request: https://github.com/openssl/openssl/pull/138...

5.9CVSS7.3AI score0.03579EPSS
Exploits2
Rows per page
Query Builder