Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1047 matches found

CNNVD
CNNVDadded 2025/06/10 12:0 a.m.2 views

Dmacroweb DM Corporative CMS 安全漏洞

Dmacroweb DM Corporative CMS is a content management system from the Spanish company Dmacroweb. Dmacroweb DM Corporative CMS suffers from an insecure direct object reference vulnerability, which stems from the failure of the option parameter in the file /administer/selectionnode/framesSelection.a...

7.5CVSS6.8AI score0.00279EPSS
Exploits0References1
Circl
Circladded 2025/06/05 2:39 p.m.19 views

CVE-2025-0691

creationtimestamp| type| source ---|---|--- 2025-06-05 14:39:24+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqukdxealci2...

5CVSS7.3AI score0.00262EPSS
Exploits0References1
Circl
Circladded 2025/06/04 5:38 p.m.17 views

CVE-2025-5688

creationtimestamp| type| source ---|---|--- 2025-06-04 17:38:25+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114626311294944724 2025-06-04 17:47:09+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqseem5hgaa2 2025-06-06...

7.5CVSS6.6AI score0.00305EPSS
Exploits1References4
Circl
Circladded 2025/05/31 4:28 a.m.23 views

CVE-2025-5368

creationtimestamp| type| source ---|---|--- 2025-05-31 04:28:24+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqgvtfaz7f42 2025-05-31 08:12:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqhcfortmr2q...

8.8CVSS7AI score0.00342EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 9:16 a.m.6 views

CVE-2024-6055

Improper removal of sensitive information in data source export feature in Devolutions Remote Desktop Manager 2024.1.32.0 and earlier on Windows allows an attacker that obtains the exported settings to recover powershell credentials configured on the data source via stealing the configuration fil...

4.7CVSS6.6AI score0.00497EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:19 a.m.3 views

CVE-2024-10602

A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. Affected by this issue is some unknown functionality of the file /general/approvecenter/list/inputform/datapickerlink.php. The manipulation of the argument dataSrc leads to sql injection. The attack may be launched...

9.8CVSS7.2AI score0.00543EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:50 a.m.5 views

CVE-2024-11671

Improper authentication in SQL data source MFA validation in Devolutions Remote Desktop Manager 2024.3.17 and earlier on Windows allows an authenticated user to bypass the MFA validation via data source switching...

5.4CVSS7.7AI score0.00513EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:37 p.m.6 views

CVE-2022-41263

Due to a missing authentication check, SAP Business Objects Business Intelligence Platform Web Intelligence - versions 420, 430, allows an authenticated non-administrator attacker to modify the data source information for a document that is otherwise restricted. On successful exploitation, the...

4.3CVSS5AI score0.0021EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:10 p.m.19 views

CVE-2022-3641

Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account...

8.8CVSS7.4AI score0.00555EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 8:12 a.m.6 views

CVE-2019-13348

In Knowage through 6.1.1, an authenticated user who accesses the datasources page will gain access to any data source credentials in cleartext, which includes databases...

8.8CVSS6.9AI score0.01467EPSS
Exploits1References1
Circl
Circladded 2025/05/22 1:35 a.m.12 views

CVE-2025-5052

creationtimestamp| type| source ---|---|--- 2025-05-22 01:35:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lppxzrrcvj2m...

9.8CVSS7AI score0.00588EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/21 11:56 p.m.17 views

CVE-2009-0609

Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3, when a JDBC data source is used, does not properly handle 1 a long value in an ADD or 2 long string attributes, which allows remote attackers to cause a denial of service JDBC backend...

7.8CVSS6.9AI score0.02542EPSS
Exploits1References1
Circl
Circladded 2025/05/16 7:34 a.m.2 views

CVE-2024-49925

creationtimestamp| type| source ---|---|--- 2025-05-16 07:34:14+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16657 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS6.6AI score0.00263EPSS
Exploits0References2
Circl
Circladded 2025/05/08 9:15 p.m.14 views

CVE-2025-28074

creationtimestamp| type| source ---|---|--- 2025-05-08 21:15:21+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3looteghxxqh2 2025-05-08 21:25:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15628 2025-05-08...

6.1CVSS4.8AI score0.00516EPSS
Exploits1References4
Circl
Circladded 2025/04/30 1:13 p.m.10 views

CVE-2025-45020

creationtimestamp| type| source ---|---|--- 2025-04-30 13:13:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14024 2025-04-30 15:55:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo25tbbs2z2o 2025-04-30 16:14:28+00:00| seen|...

7.2CVSS5.3AI score0.00457EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/04/30 12:17 a.m.17 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS7.1AI score0.00389EPSS
Exploits0References6
Circl
Circladded 2025/04/29 4:12 p.m.9 views

CVE-2025-4070

creationtimestamp| type| source ---|---|--- 2025-04-29 16:12:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13851 2025-04-29 19:02:24+00:00| published-proof-of-concept| Telegram/obajfcGkagyaYelipu27ZjZPzm4H6vLGDNzjCH6Suk5ZZs 2025-04-29 19:20:29+00:00| seen|...

9.8CVSS7.3AI score0.00478EPSS
Exploits1References3
Circl
Circladded 2025/04/29 5:11 a.m.3 views

CVE-2022-44647

creationtimestamp| type| source ---|---|--- 2025-04-29 05:11:10+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13774...

5.5CVSS5.5AI score0.00696EPSS
Exploits0References1
OSV
OSVadded 2025/04/28 4:15 p.m.3 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS5.8AI score0.00389EPSS
Exploits0References4
NVD
NVDadded 2025/04/28 4:15 p.m.14 views

CVE-2023-35815

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data...

9.8CVSS0.00389EPSS
Exploits0References4
Rows per page
Query Builder