Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

53 matches found

NVD
NVDadded 3 days ago7 views

CVE-2026-56111

Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when built with MESHBEDLEVELING enabled, contains an out-of-bounds write vulnerability in the M421 G-code handler that allows attackers to corrupt firmware memory by supplying out-of-range X and Y grid indices. Attackers can send a single...

9.1CVSS0.00542EPSS
Exploits1References4
NVD
NVDadded 2026/05/21 10:16 p.m.17 views

CVE-2026-7887

For Concrete CMS 9.5.0 and below, OAuth 2.0 Authorization-Code Handler Bypasses Account Status. A user with uIsActive=0 suspended, banned, terminated employee can still authenticate via OAuth and receive valid API tokens. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score o...

6.4CVSS0.00172EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/21 9:20 p.m.5 views

CVE-2026-7887

For Concrete CMS 9.5.0 and below, OAuth 2.0 Authorization-Code Handler Bypasses Account Status. A user with uIsActive=0 suspended, banned, terminated employee can still authenticate via OAuth and receive valid API tokens. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score o...

2.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/19 12:0 a.m.7 views

PT-2026-3435

Name of the Vulnerable Software and Affected Versions technical-laohu mpay versions up to 1.2.4 Description A security issue exists in the QR Code Image Handler component of technical-laohu mpay. Manipulation of the codeimg argument can lead to unrestricted upload. This issue can be exploited...

9.8CVSS5AI score0.00299EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2026/01/09 12:31 p.m.3 views

CVE-2023-4177

A vulnerability was found in EmpowerID up to 7.205.0.0. It has been rated as problematic. This issue affects some unknown processing of the component Multi-Factor Authentication Code Handler. The manipulation leads to information disclosure. The complexity of an attack is rather high. The...

5.7CVSS6.2AI score0.00191EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-17579

Malicious code in bioql PyPI...

7.5CVSS4.7AI score0.00497EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.19 views

EUVD-2025-12431

Malicious code in bioql PyPI...

5CVSS5.2AI score0.00378EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-24637

Malicious code in bioql PyPI...

6.3CVSS4.8AI score0.00636EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-54056

Malicious code in bioql PyPI...

5.7CVSS4.2AI score0.00191EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-48586

Malicious code in bioql PyPI...

7.5CVSS5.6AI score0.00778EPSS
Exploits1References4
CVE
CVEadded 2025/08/13 8:2 p.m.22 views

CVE-2025-8927

Summary (CVE-2025-8927) : A vulnerability exists in mtons mblog up to version 3.5.0 affecting the Verification Code Handler, specifically the file /email/send_code. Malicious manipulation of the email parameter can bypass restrictions on excessive authentication attempts. The issue can be exploit...

6.3CVSS7.5AI score0.00636EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/08/13 8:2 p.m.4 views

CVE-2025-8927 mtons mblog Verification Code send_code excessive authentication

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS7.5AI score0.00636EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/08/13 8:2 p.m.11 views

CVE-2025-8927 mtons mblog Verification Code send_code excessive authentication

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS0.00636EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/08/13 12:0 a.m.4 views

PT-2025-33077 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A flaw exists in mtons mblog up to version 3.5.0 within the Verification Code Handler component, specifically in the /email/send code file. Manipulation of the email argument results in an imprope...

6.3CVSS4.2AI score0.00636EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/06/11 9:8 p.m.5 views

CVE-2025-5897

A vulnerability was found in vuejs vue-cli up to 5.0.8. It has been rated as problematic. This issue affects the function HtmlPwaPlugin of the file packages/@vue/cli-plugin-pwa/lib/HtmlPwaPlugin.js of the component Markdown Code Handler. The manipulation leads to inefficient regular expression...

7.5CVSS4.5AI score0.00497EPSS
Exploits1References1
NVD
NVDadded 2025/06/09 9:15 p.m.8 views

CVE-2025-5897

A vulnerability was found in vuejs vue-cli up to 5.0.8. It has been rated as problematic. This issue affects the function HtmlPwaPlugin of the file packages/@vue/cli-plugin-pwa/lib/HtmlPwaPlugin.js of the component Markdown Code Handler. The manipulation leads to inefficient regular expression...

7.5CVSS0.00497EPSS
Exploits1References4
CVE
CVEadded 2025/06/09 9:0 p.m.61 views

CVE-2025-5897

CVE-2025-5897 affects the Vue CLI (vue-cli) up to version 5.0.8, specifically the HtmlPwaPlugin.js in the Markdown Code Handler. The issue is an inefficient regular expression handling that can enable a Regular Expression Denial of Service (ReDoS) scenario and may be triggered remotely. Multiple ...

7.5CVSS4.8AI score0.00497EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/23 8:14 a.m.3 views

CVE-2024-9907

A vulnerability classified as problematic was found in QileCMS up to 1.1.3. This vulnerability affects the function sendEmail of the file /qilecms/user/controller/Forget.php of the component Verification Code Handler. The manipulation leads to weak password recovery. The attack can be initiated...

6.3CVSS6AI score0.00392EPSS
Exploits0References1
OSV
OSVadded 2025/04/27 9:34 p.m.8 views

GHSA-37PQ-893F-G7Q5 Apereo CAS code injection vulnerability

A vulnerability was found in Apereo CAS 5.2.6 and classified as critical. Affected by this issue is the function saveService of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\RegisteredServiceSimpleFormController.java of the component...

5CVSS7.2AI score0.00378EPSS
Exploits0References6
Github Security Blog
Github Security Blogadded 2025/04/27 9:34 p.m.14 views

Apereo CAS code injection vulnerability

A vulnerability was found in Apereo CAS 5.2.6 and classified as critical. Affected by this issue is the function saveService of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\RegisteredServiceSimpleFormController.java of the component...

7.5CVSS7.3AI score0.00378EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder