Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2535 matches found

Nuclei
Nucleiadded 17 hours ago74 views

Oracle WebLogic Server Local File Inclusion

An easily exploitable local file inclusion vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle WebLogic Server. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Successful attacks of this vulnerability can...

7.5CVSS6.8AI score0.92331EPSS
Exploits6References5
Nuclei
Nucleiadded 17 hours ago26 views

Oracle Retail Xstore Suite - Pre-authenticated Path Traversal

Vulnerability in the Oracle Retail Xstore Office product of Oracle Retail Applications component: Security. Supported versions that are affected are 19.0.5, 20.0.3, 20.0.4, 22.0.0 and 23.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

8.6CVSS7.3AI score0.01783EPSS
Exploits0References3
NVD
NVDadded 2026/06/17 10:54 a.m.5 views

CVE-2026-46979

Vulnerability in the PeopleSoft Enterprise CS Campus Community product of Oracle PeopleSoft component: Integration and Interfaces. The supported version that is affected is 9.2.38. Easily exploitable vulnerability allows high privileged attacker with network access via HTTPS to compromise...

6.5CVSS0.00274EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 10:54 a.m.7 views

CVE-2026-46911

Vulnerability in the JD Edwards EnterpriseOne Project Costing product of Oracle JD Edwards component: Job Costing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via JDENET to compromise JD Edwards EnterpriseOne...

9.6CVSS0.00261EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 10:53 a.m.7 views

CVE-2026-46808

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware component: Content Server. The supported version that is affected is 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content...

8.7CVSS0.00326EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.12 views

PT-2026-49917

Name of the Vulnerable Software and Affected Versions WebCenter Content: Imaging version 12.2.1.4.0 WebCenter Content: Imaging version 14.1.2.0.0 Description An issue in the Core component of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise th...

9.1CVSS5.9AI score0.00425EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.9 views

PT-2026-49847

Name of the Vulnerable Software and Affected Versions PeopleSoft Enterprise PT PeopleTools versions 8.61 PeopleSoft Enterprise PT PeopleTools versions 8.62 Description An issue in the Weblogic component allows an unauthenticated attacker with network access via HTTP to compromise the system...

8.7CVSS5.9AI score0.00323EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.11 views

PT-2026-49939

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware component: Content Server. The supported version that is affected is 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle WebCenter Content...

8.2CVSS5.2AI score0.00317EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.8 views

PT-2026-49984

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: VMSVGA device. The supported version that is affected is 7.2.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

6CVSS5.1AI score0.00167EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:38 p.m.7 views

CVE-2026-34299

Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft component: Work Order Management. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

6.5CVSS7.3AI score0.00261EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:21 p.m.7 views

CVE-2026-34285

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS7.1AI score0.00413EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:15 p.m.5 views

CVE-2026-46818

Vulnerability in the Oracle Payments product of Oracle E-Business Suite component: File Transmission. Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Payments. Successful...

7.4CVSS5.5AI score0.00261EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/27 7:53 a.m.27 views

CVE-2026-40828 Authenticated SQLi in DeleteSysLogEntry function

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DeleteSysLogEntry function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deleting entries in a non critical table. This can...

7CVSS0.00295EPSS
Exploits0References1
HackRead
HackReadadded 2026/05/07 11:36 a.m.15 views

Why Outdated Maintenance Software Is a Growing Ransomware Risk

Outdated maintenance software increases ransomware risk by exposing weak access controls, unpatched systems, and critical operational data to attackers...

5.8AI score
Exploits0
OSV
OSVadded 2026/05/06 2:45 p.m.5 views

BIT-JAVA-MIN-2025-53066

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS6.7AI score0.00633EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/04/28 12:0 a.m.9 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that can be exploited by an attacker to read arbitrary host files, thereby stealing sensitive credentials and accessing critical data...

6CVSS5.9AI score0.00181EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/21 9:31 p.m.3 views

EUVD-2026-24370

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS5.7AI score0.00346EPSS
Exploits0References2
EUVD
EUVDadded 2026/04/21 9:31 p.m.6 views

EUVD-2026-24369

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS5.7AI score0.00413EPSS
Exploits0References2
NVD
NVDadded 2026/04/21 9:16 p.m.6 views

CVE-2026-34287

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS0.00346EPSS
Exploits0References1
NVD
NVDadded 2026/04/21 9:16 p.m.7 views

CVE-2026-34286

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS0.00413EPSS
Exploits0References1
Rows per page
Query Builder