Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-2376

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00217EPSS
Exploits0References5
NVD
NVDadded 2023/07/21 7:15 p.m.10 views

CVE-2023-25841

There is a stored Cross-site Scripting vulnerability in Esri ArcGIS Server versions 11.0 and below on Windows and Linux platforms that may allow a remote, unauthenticated attacker to create crafted content which when clicked could potentially execute arbitrary JavaScript code in the victim’s...

6.1CVSS6.3AI score0.00801EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2022/05/24 8:47 p.m.51 views

Argo CD will blindly trust JWT claims if anonymous access is enabled

Impact A critical vulnerability has been discovered in Argo CD which would allow unauthenticated users to impersonate as any Argo CD user or role, including the admin user, by sending a specifically crafted JSON Web Token JWT along with the request. In order for this vulnerability to be exploited...

10CVSS9.3AI score0.01577EPSS
Exploits0References6Affected Software2
Positive Technologies
Positive Technologiesadded 2022/05/20 12:0 a.m.2 views

PT-2022-2704 · Argo Cd · Argo Cd

Name of the Vulnerable Software and Affected Versions: Argo CD versions 1.4.0 through 2.1.14 Argo CD versions 2.2.0 through 2.2.8 Argo CD versions 2.3.0 through 2.3.3 Description: A critical issue has been discovered in Argo CD that allows unauthenticated users to impersonate as any Argo CD user ...

10CVSS9.9AI score0.01577EPSS
Exploits0References14
Positive Technologies
Positive Technologiesadded 2018/05/09 12:0 a.m.2 views

PT-2018-10050 · Red Hat · Wildfly

Name of the Vulnerable Software and Affected Versions: WildFly version 10.1.2.Final Description: An issue allows an attacker to access the administration panel without authentication using anonymous access. Once logged in, a misconfiguration permits an anonymous user to deploy a malicious .war...

10CVSS10AI score0.0743EPSS
Exploits2References3
Symantec
Symantecadded 2004/08/10 12:0 a.m.33 views

Microsoft Exchange Outlook Web Access HTTP Response Splitting Vulnerability

Description Microsoft Exchange Outlook Web Access OWA is prone to HTTP response splitting attacks. This issue could permit hostile script to be injected into client sessions, which could gain access to properties of the OWA server and Web pages hosted on the site. It is noted that the attacker mu...

7AI score
Exploits0References2Affected Software1
CERT
CERTadded 2002/08/23 12:0 a.m.35 views

Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum2 transaction

Overview Microsoft Server Message Block SMB may crash when it receives a crafted SMBCOMTRANSACTION packet requesting a NetServerEnum2 transaction. Attackers can use this vulnerability to cause a denial of service. Description SMB is a protocol for sharing data and resources between computers. It ...

7.5CVSS6.6AI score0.5914EPSS
Exploits3References2
Rows per page
Query Builder