Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/03/09 10:39 a.m.2 views

CVE-2026-25604 Apache Airflow AWS Auth Manager - Host Header Injection Leading to SAML Authentication Bypass

In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client and not verified against the actual instance URL. This allowed to gain access to different instances with potentially different access controls by reusing SAML response from other instances. You...

5.7AI score0.00016EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/10/14 12:0 a.m.2 views

Microsoft Windows Remote Desktop Services 授权问题漏洞

Microsoft Windows Remote Desktop Services is a collection of features from Microsoft Corporation USA that allow users to remotely access graphical desktops and Windows applications. An authorization issue vulnerability exists in Microsoft Windows Remote Desktop Services that stems from an...

7CVSS9AI score0.00048EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/02/20 12:0 a.m.2 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome that stems from an improper implementation of the Content Security Policy module. An attacker can exploit this vulnerability to bypass security restrictions...

8.8CVSS8.8AI score0.00109EPSS
Exploits1References5
CNNVD
CNNVDadded 2022/10/17 12:0 a.m.2 views

WordPress Plugin Drag and Drop Multiple File Upload 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security bypass vulnerability exists in WordPress Drag and Drop Multiple File Upload, which is caused due to a flaw in the upload size limit set...

4.3CVSS6.7AI score0.00148EPSS
Exploits2References2
RedHat Linux
RedHat Linuxadded 2022/01/12 12:4 p.m.1 views

Mozilla: Iframe sandbox bypass with XSLT

The Mozilla Foundation Security Advisory describes this flaw as: It was possible to construct specific XSLT markups that would enable someone to bypass an iframe sandbox...

10CVSS7.3AI score0.00065EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2021/09/07 12:0 a.m.1 views

PT-2021-19939 · Nextcloud +2 · Nextcloud Server +2

Name of the Vulnerable Software and Affected Versions: Nextcloud Server versions prior to 20.0.12 Nextcloud Server versions prior to 21.0.4 Nextcloud Server versions prior to 22.1.0 Description: The issue affects Nextcloud server, an open-source, self-hosted personal cloud. An attacker can bypass...

10CVSS5.9AI score0.03114EPSS
Exploits2References58
CNVD
CNVDadded 2020/08/26 12:0 a.m.2 views

Google Chrome Security Bypass Vulnerability (CNVD-2020-49912)

Google Chrome is a web browser. A security vulnerability exists in Google Chrome versions prior to 85.0.4183.83. An attacker can exploit this vulnerability to bypass security restrictions...

6.5CVSS8.9AI score0.00818EPSS
Exploits0References1
Rows per page
Query Builder