Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1040 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 11:37 p.m.6 views

CVE-2022-41263

Due to a missing authentication check, SAP Business Objects Business Intelligence Platform Web Intelligence - versions 420, 430, allows an authenticated non-administrator attacker to modify the data source information for a document that is otherwise restricted. On successful exploitation, the...

4.3CVSS5AI score0.0021EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:10 p.m.19 views

CVE-2022-3641

Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account...

8.8CVSS7.4AI score0.00555EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 8:12 a.m.5 views

CVE-2019-13348

In Knowage through 6.1.1, an authenticated user who accesses the datasources page will gain access to any data source credentials in cleartext, which includes databases...

8.8CVSS6.9AI score0.01467EPSS
Exploits1References1
Circl
Circladded 2025/05/22 1:35 a.m.12 views

CVE-2025-5052

creationtimestamp| type| source ---|---|--- 2025-05-22 01:35:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lppxzrrcvj2m...

9.8CVSS7AI score0.00588EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/21 11:56 p.m.16 views

CVE-2009-0609

Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3, when a JDBC data source is used, does not properly handle 1 a long value in an ADD or 2 long string attributes, which allows remote attackers to cause a denial of service JDBC backend...

7.8CVSS6.9AI score0.02542EPSS
Exploits1References1
Circl
Circladded 2025/05/16 7:34 a.m.2 views

CVE-2024-49925

creationtimestamp| type| source ---|---|--- 2025-05-16 07:34:14+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16657 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS6.6AI score0.00263EPSS
Exploits0References2
Circl
Circladded 2025/05/08 9:15 p.m.14 views

CVE-2025-28074

creationtimestamp| type| source ---|---|--- 2025-05-08 21:15:21+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3looteghxxqh2 2025-05-08 21:25:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15628 2025-05-08...

6.1CVSS4.8AI score0.00516EPSS
Exploits1References4
Circl
Circladded 2025/04/30 1:13 p.m.10 views

CVE-2025-45020

creationtimestamp| type| source ---|---|--- 2025-04-30 13:13:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14024 2025-04-30 15:55:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo25tbbs2z2o 2025-04-30 16:14:28+00:00| seen|...

7.2CVSS5.3AI score0.00457EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/04/30 12:17 a.m.17 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS7.1AI score0.00389EPSS
Exploits0References6
Circl
Circladded 2025/04/29 4:12 p.m.9 views

CVE-2025-4070

creationtimestamp| type| source ---|---|--- 2025-04-29 16:12:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13851 2025-04-29 19:02:24+00:00| published-proof-of-concept| Telegram/obajfcGkagyaYelipu27ZjZPzm4H6vLGDNzjCH6Suk5ZZs 2025-04-29 19:20:29+00:00| seen|...

9.8CVSS7.3AI score0.00478EPSS
Exploits1References3
Circl
Circladded 2025/04/29 5:11 a.m.2 views

CVE-2022-44647

creationtimestamp| type| source ---|---|--- 2025-04-29 05:11:10+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13774...

5.5CVSS5.5AI score0.00696EPSS
Exploits0References1
OSV
OSVadded 2025/04/28 4:15 p.m.3 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS5.8AI score0.00389EPSS
Exploits0References4
NVD
NVDadded 2025/04/28 4:15 p.m.14 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS0.00389EPSS
Exploits0References4
Circl
Circladded 2025/04/28 9:40 a.m.7 views

CVE-2024-13688

creationtimestamp| type| source ---|---|--- 2025-04-28 09:40:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnuhxieo5u2b 2025-04-28 09:52:50+00:00| seen| https://t.me/cvedetector/23887...

5.3CVSS8.7AI score0.00312EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/04/28 12:0 a.m.13 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

3.5CVSS0.00389EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/04/28 12:0 a.m.2 views

PT-2025-18085 · Devexpress · Devexpress

Name of the Vulnerable Software and Affected Versions: DevExpress versions prior to 23.1.3 Description: The issue concerns a data-source protection mechanism bypass during the deserialization of XML data. This means that the normal protections in place to safeguard data sources can be circumvente...

9.8CVSS6.4AI score0.00389EPSS
Exploits0References9
CVE
CVEadded 2025/04/28 12:0 a.m.65 views

CVE-2023-35815

DevExpress before 23.1.3 has a vulnerability where the data-source protection mechanism can be bypassed during XML deserialization. Affected product: DevExpress (pre-23.1.3). Root cause: bypass of data-source protection on XML data. Practical impact (as stated): potential unauthorized access or m...

9.8CVSS7.1AI score0.00389EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/28 12:0 a.m.9 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

3.5CVSS4.1AI score0.00389EPSS
Exploits0References4
Circl
Circladded 2025/04/27 6:10 p.m.6 views

CVE-2025-3980

creationtimestamp| type| source ---|---|--- 2025-04-27 18:10:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13628 2025-04-27 21:20:12+00:00| seen| https://t.me/cvedetector/23851 2025-04-27 21:40:21+00:00| seen|...

5.3CVSS4.5AI score0.03505EPSS
Exploits1References3
Circl
Circladded 2025/04/23 9:14 p.m.8 views

CVE-2025-3673

creationtimestamp| type| source ---|---|--- 2025-04-23 21:14:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnj4fc3zvb24...

7AI score
Exploits0References1
Rows per page
Query Builder