Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

816 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-21537

Malicious code in bioql PyPI...

9.8CVSS7.8AI score0.00572EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-45534

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00604EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-2816

Malicious code in bioql PyPI...

5.3CVSS5.1AI score0.00402EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-24649

Malicious code in bioql PyPI...

4.8CVSS5.1AI score0.00393EPSS
Exploits2References1
OSV
OSVadded 2025/10/03 7:15 p.m.3 views

CVE-2025-54154

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an attacker gains physical access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QNAP Authenticator...

6.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2025/10/03 7:15 p.m.2 views

CVE-2025-54154

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an attacker gains physical access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QNAP Authenticator...

6.9CVSS0.0004EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/03 6:15 p.m.1 views

CVE-2025-54154 QNAP Authenticator

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an attacker gains physical access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QNAP Authenticator...

6.9CVSS6.4AI score0.0004EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 6:15 p.m.2 views

EUVD-2025-32344

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an attacker gains physical access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QNAP Authenticator...

6.9CVSS6.3AI score0.0004EPSS
Exploits0References2
CVE
CVEadded 2025/10/03 6:15 p.m.7 views

CVE-2025-54154

CVE-2025-54154 affects QNAP Authenticator prior to version 1.3.1.1227, where an improper authentication issue could allow a physically present attacker to compromise system security. The root cause is improper authentication in the authentication workflow, enabling unauthorized access when physic...

6.9CVSS6.4AI score0.0004EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/10/03 6:15 p.m.4 views

CVE-2025-54154 QNAP Authenticator

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an attacker gains physical access, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: QNAP Authenticator...

6.9CVSS0.0004EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/10/03 12:0 a.m.2 views

QNAP Authenticator 授权问题漏洞

QNAP Authenticator is a multiple authentication application from Taiwan, China-based QNAP Technology QNAP. An authorization issue vulnerability exists in versions prior to QNAP Authenticator 1.3.1.1227, which stems from improper authentication and could lead to a system security compromise...

6.9CVSS6.8AI score0.0004EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/03 12:0 a.m.2 views

PT-2025-40590

Name of the Vulnerable Software and Affected Versions QNAP Authenticator versions prior to 1.3.1.1227 Description An improper authentication issue exists in QNAP Authenticator. An attacker with physical access can exploit this to compromise system security. Recommendations Update to QNAP...

6.9CVSS6.5AI score0.0004EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/09/05 3:22 p.m.3 views

CVE-2025-9824

ImpactThe attacker can validate if a user exists by checking the time login returns. This timing difference can be used to enumerate valid usernames, after which an attacker could attempt brute force attacks. PatchesThis vulnerability has been patched, implementing a timing-safe form login...

5.9CVSS6.8AI score0.00076EPSS
Exploits0References1
OSV
OSVadded 2025/09/03 10:20 p.m.1 views

GHSA-3GGV-QWCP-J6XG Mautic Vulnerable to User Enumeration via Response Timing

Impact The attacker can validate if a user exists by checking the time login returns. This timing difference can be used to enumerate valid usernames, after which an attacker could attempt brute force attacks. Patches This vulnerability has been patched, implementing a timing-safe form login...

5.9CVSS6.9AI score0.00076EPSS
Exploits0References5
CVE
CVEadded 2025/09/03 2:25 p.m.10 views

CVE-2025-9824

The CVE-2025-9824 issue stems from different login response times for existing versus non-existent users in Mautic, enabling user enumeration and potential brute-force attempts. Technical details describe that valid usernames trigger password hashing while invalid ones do not; the fix adds a Timi...

5.9CVSS6.4AI score0.00076EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/09/03 2:25 p.m.1 views

CVE-2025-9824 User Enumeration via Response Timing

ImpactThe attacker can validate if a user exists by checking the time login returns. This timing difference can be used to enumerate valid usernames, after which an attacker could attempt brute force attacks. PatchesThis vulnerability has been patched, implementing a timing-safe form login...

5.9CVSS6.4AI score0.00076EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-41900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jetty is a Java based web server and servlet engine. Versions 9.4.21 through 9.4.51, 10.0.15, and 11.0.15 are vulnerable to weak authentication. If a Jetty...

4.3CVSS6.8AI score0.00141EPSS
Exploits1References2
OSV
OSVadded 2025/08/27 5:19 p.m.3 views

DRUPAL-CONTRIB-2025-098

This module allows users to setup two-factor authentication 2FA using authenticator apps for enhanced login security. The module did not protect all possible login paths provided by core modules. CVSS risk score experimental 6.3 / Medium...

8.8CVSS7AI score0.0007EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/08/27 12:0 a.m.3 views

Drupal Authenticator Login module < 2.1.8 - Authenticated Broken Access Control vulnerability

Authenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Authenticator Login versions 2.1.8...

8.8CVSS7AI score0.0007EPSS
Exploits0References1Affected Software1
Drupal
Drupaladded 2025/08/27 12:0 a.m.8 views

Authenticator Login - Moderately critical - Access bypass - SA-CONTRIB-2025-098

This module allows users to setup two-factor authentication 2FA using authenticator apps for enhanced login security. The module did not protect all possible login paths provided by core modules. CVSS risk score experimental 6.3 / Medium...

8.8CVSS5.4AI score0.0007EPSS
Exploits0References4
Rows per page
Query Builder