Lucene search
K

1105 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.12 views

CVE-2023-43667

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can create misleading or false log records, making it harder to audit and trace malicious...

7.5CVSS6.8AI score0.01226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:44 a.m.10 views

CVE-2010-0502

iChat Server in Apple Mac OS X Server before 10.6.3, when group chat is used, does not perform logging for all types of messages, which might allow remote attackers to avoid message auditing via an unspecified selection of message type...

4.3CVSS6.6AI score0.01294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:30 a.m.9 views

CVE-2021-27925

An issue was discovered in Couchbase Server 6.5.x and 6.6.x through 6.6.1. When using the View Engine and Auditing is enabled, a crash condition can depending on a race condition cause an internal user with administrator privileges, @nsserver, to have its credentials leaked in cleartext in the...

4.4CVSS6.9AI score0.00529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:30 a.m.6 views

CVE-2019-16214

Libra Core before 2019-09-03 has an erroneous regular expression for inline comments, which makes it easier for attackers to interfere with code auditing by using a nonstandard line-break character for a comment. For example, a Move module author can enter the // sequence which introduces a...

5.7CVSS7AI score0.01316EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2026/01/04 6:13 a.m.149 views

linux-privesc-audit-toolkit

Linux Privilege Escalation Automation Toolkit !Bannerscree...

7.2AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/30 3:58 p.m.186 views

CVEhunter-Tools

CVEhunter: Integrated AI-Assisted Code Auditing Toolkit Windo...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/28 12:0 a.m.6 views

Breaking the Illusion: Automated Reasoning of GDPR Consent Violations

Recent privacy regulations such as the General Data Protection Regulation GDPR and the California Consumer Privacy Act CCPA have established legal requirements for obtaining user consent regarding the collection, use, and sharing of personal data. These regulations emphasize that consent must be...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/19 12:0 a.m.5 views

GRAudit Grep Auditing Tool 4.0

Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.9 views

Elasticsearch 7.0.x < 8.19.8 / 9.0.x < 9.1.8 / 9.2.x < 9.2.2 (ESA-2025-27)

The version of Elasticsearch installed on the remote host is 7.0 prior to 8.19.8, 9.0 prior to 9.1.8, or 9.2.0 prior to 9.2.2. It is, therefore, affected by a vulnerability as referenced in the ESA-2025-27 advisory. - Insertion of sensitive information in log file in Elasticsearch can lead to los...

7.4CVSS5.5AI score0.0016EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/12/16 12:0 a.m.9 views

AIAuditTrack: A Framework for AI Security System

The rapid expansion of AI-driven applications powered by large language models has led to a surge in AI interaction data, raising urgent challenges in security, accountability, and risk traceability. This paper presents AiAuditTrack AAT, a blockchain-based framework for AI usage traffic recording...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/14 5:24 a.m.150 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2P4IM0Nshell 💥Extension Tool para...

10CVSS7AI score0.99562EPSS
Exploits373
GithubExploit
GithubExploit
added 2025/12/12 2:58 p.m.159 views

Exploit for Deserialization of Untrusted Data in Facebook React

rsc-exposure-audit Black-box exposure audit for Next.js / Reac...

10CVSS7AI score0.99562EPSS
Exploits383
Fedora
Fedora
added 2025/12/03 1:40 a.m.8 views

[SECURITY] Fedora 41 Update: openbao-2.4.4-1.fc41

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00626EPSS
Exploits0
Fedora
Fedora
added 2025/12/03 1:12 a.m.7 views

[SECURITY] Fedora 42 Update: openbao-2.4.4-1.fc42

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00419EPSS
Exploits0
Fedora
Fedora
added 2025/12/03 12:59 a.m.9 views

[SECURITY] Fedora 43 Update: openbao-2.4.4-1.fc43

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00626EPSS
Exploits0
Veracode
Veracode
added 2025/11/19 9:45 a.m.8 views

Insertion Of Sensitive Information Into Log File

org.elasticsearch:elasticsearch is vulnerable to Insertion of Sensitive Information into Log File. The vulnerability is due to improper handling of request auditing for the reindex API, which allows an attacker to expose sensitive data if specific logging conditions are met...

5.7CVSS6.9AI score0.0023EPSS
Exploits0References5Affected Software1
Fedora
Fedora
added 2025/11/01 1:51 a.m.8 views

[SECURITY] Fedora 42 Update: openbao-2.4.3-1.fc42

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00286EPSS
Exploits0
Fedora
Fedora
added 2025/11/01 1:50 a.m.15 views

[SECURITY] Fedora 42 Update: sssd-2.11.1-2.fc42

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

8.8CVSS7.7AI score0.00756EPSS
Exploits0
Fedora
Fedora
added 2025/11/01 1:13 a.m.7 views

[SECURITY] Fedora 41 Update: openbao-2.4.3-1.fc41

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00286EPSS
Exploits0
Fedora
Fedora
added 2025/10/31 12:55 a.m.9 views

[SECURITY] Fedora 43 Update: openbao-2.4.3-1.fc43

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00286EPSS
Exploits0
Rows per page
Query Builder