Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

862 matches found

OSV
OSVadded 2024/11/26 2:15 p.m.0 views

UBUNTU-CVE-2024-11697

When handling keypress events, an attacker may have been able to trick a user into bypassing the "Open Executable File?" confirmation dialog. This could have led to malicious code execution. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...

8.8CVSS5.9AI score0.00091EPSS
Exploits0References11
AlpineLinux
AlpineLinuxadded 2024/11/26 1:33 p.m.30 views

CVE-2024-11693

The executable file warning was not presented when downloading .library-ms files. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...

9.8CVSS6.2AI score0.00393EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2024/11/26 12:0 a.m.10 views

Mozilla Firefox ESR < 128.5

The version of Firefox ESR installed on the remote Windows host is prior to 128.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-64 advisory. - Memory safety bugs present in Firefox 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of these bugs showed...

9.8CVSS7.7AI score0.00393EPSS
Exploits0References10
Mozilla
Mozillaadded 2024/11/26 12:0 a.m.19 views

Security Vulnerabilities fixed in Thunderbird 128.5 — Mozilla

Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in Apple's GPU driver. This bug only affected the application on Apple M series hardware. Other platforms were unaffected. An attacker could cause a select...

9.8CVSS7.5AI score0.00393EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/11/26 12:0 a.m.15 views

Mozilla Thunderbird < 133.0

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 133.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-67 advisory. - A double-free issue could have occurred in secpkcs7decoderstartdecrypt when handling an error path. Unde...

9.8CVSS7.5AI score0.00393EPSS
Exploits0References17
Tenable Nessus
Tenable Nessusadded 2024/11/26 12:0 a.m.10 views

Mozilla Thunderbird < 128.5

The version of Thunderbird installed on the remote Windows host is prior to 128.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-68 advisory. - Memory safety bugs present in Firefox 132, Thunderbird 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of thes...

9.8CVSS7.7AI score0.00393EPSS
Exploits0References10
Mozilla
Mozillaadded 2024/11/26 12:0 a.m.25 views

Security Vulnerabilities fixed in Thunderbird 133 — Mozilla

Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in Apple's GPU driver. This bug only affected the application on Apple M series hardware. Other platforms were unaffected. Malicious websites may have been able...

9.8CVSS8.7AI score0.00393EPSS
Exploits0References17Affected Software1
Packet Storm
Packet Stormadded 2024/10/04 12:0 a.m.253 views

Transport Management System 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Transport Management System 1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

7.4AI score
Exploits0
OSV
OSVadded 2024/10/03 5:15 p.m.2 views

DEBIAN-CVE-2024-0123

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial ...

3.3CVSS4.5AI score0.00049EPSS
Exploits0References1
OSV
OSVadded 2024/09/27 1:15 p.m.0 views

DEBIAN-CVE-2024-46826

In the Linux kernel, the following vulnerability has been resolved: ELF: fix kernel.randomizevaspace double read ELF loader uses "randomizevaspace" twice. It is sysctl and can change at any moment, so 2 loads could see 2 different values in theory with unpredictable consequences. Issue exactly on...

5.5CVSS5.5AI score0.00009EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2024/09/26 12:0 a.m.257 views

Rupee Invoice System 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Rupee Invoice System v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/16 12:0 a.m.213 views

Reservation Management System 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Reservation Management System 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 129.0.1 ...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/16 12:0 a.m.421 views

Online Job Recruitment Portal Project 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Online Job Recruitment Portal project v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2024/09/12 2:33 p.m.23 views

CVE-2024-45826 ThinManager® Code Execution Vulnerability

CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code execution vulnerability exists when the ThinManager® processes a crafted POST request. If exploited, a user can install an executable file...

8.5CVSS0.05871EPSS
Exploits0References1
CVE
CVEadded 2024/09/12 2:33 p.m.56 views

CVE-2024-45826

Rockwell Automation ThinManager has a path traversal leading to remote code execution when processing a crafted POST request. Affected versions: ThinManager 13.1.0–13.1.2 and 13.2.0–13.2.1; upgrade to 13.1.3+ or 13.2.2+ to mitigate. CVSSv3 base score 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H); CVS...

8.8CVSS7.5AI score0.05871EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/09/12 2:33 p.m.24 views

CVE-2024-45826 ThinManager® Code Execution Vulnerability

CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code execution vulnerability exists when the ThinManager® processes a crafted POST request. If exploited, a user can install an executable file...

8.5CVSS7.7AI score0.05871EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2024/08/21 12:0 a.m.239 views

Medical Center Portal 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Medical Center Portal 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits ...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/09 12:0 a.m.316 views

Exam Form Submission 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Exam Form Submission v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score
Exploits0
OSV
OSVadded 2024/08/08 5:15 p.m.2 views

DEBIAN-CVE-2024-0102

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm, where an attacker can cause an out-of-bounds read issue by deceiving a user into reading a malformed ELF file. A successful exploit of this vulnerability might lead to denial of service...

5.5CVSS5.3AI score0.00065EPSS
Exploits0References1
NVD
NVDadded 2024/07/29 9:15 a.m.16 views

CVE-2024-41726

Path traversal vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary executable file may be executed by a user who can log in to the PC where the product's Windows client is installed...

7.5CVSS0.00571EPSS
Exploits0References2
Rows per page
Query Builder