Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/03/30 9:31 p.m.2 views

EUVD-2026-17186

Syntx's command auto-approval module contains a critical OS command injection vulnerability that renders its whitelist security mechanism completely ineffective. The system relies on fragile regular expressions to parse command structures; while it attempts to intercept dangerous operations, it...

6.3AI score0.01145EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/03/06 12:0 a.m.7 views

Parse Server 安全漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that supports Node.js. There were security vulnerabilities in versions of Parse Server prior to 8.6.7 and 9.5.0-alpha.6. These vulnerabilities stemmed from incorrect $regex query...

6.9CVSS5.8AI score0.00336EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/03 12:0 a.m.3 views

PT-2025-40451

Name of the Vulnerable Software and Affected Versions Yoast SEO Premium plugin for WordPress versions 25.7 through 25.9 Description The software is susceptible to a Stored Cross-Site Scripting issue stemming from a flawed regular expression used to remove an attribute within post content. This fl...

6.4CVSS5.8AI score0.00308EPSS
Exploits0References9
OSV
OSVadded 2024/09/18 6:15 a.m.6 views

CVE-2024-6641

The WP Hardening – Fix Your WordPress Security plugin for WordPress is vulnerable to Security Feature Bypass in all versions up to, and including, 1.2.6. This is due to use of an incorrect regular expression within the "Stop User Enumeration" feature. This makes it possible for unauthenticated...

5.3CVSS5.6AI score
Exploits0References2
CNNVD
CNNVDadded 2020/11/23 12:0 a.m.7 views

Scratch Addons Cross-Site Scripting Vulnerability

Scratch Addons is a plugin from the Scratch Addons community for providing theme changing functionality for browsers. The addon supports Chrome and Firefox browsers. A cross-site scripting vulnerability exists in Scratch Addons, which stems from the use of incorrect regular expressions, which can...

7.6CVSS5.9AI score0.01016EPSS
Exploits0References5
CNVD
CNVDadded 2017/12/25 12:0 a.m.4 views

Enigmail Mail Parsing Vulnerability

Enigmail is a data encryption and decryption extension for Mozilla Thunderbird and SeaMonkey web packages that provides OpenPGP's email public key encryption and signing capabilities. An email parsing vulnerability exists in versions of Enigmail prior to 1.9.9. The vulnerability arises due to an...

5.9CVSS6.8AI score0.01119EPSS
Exploits0References1
OSV
OSVadded 2014/02/01 3:55 p.m.2 views

DEBIAN-CVE-2013-7176

config/filter.d/postfix.conf in the postfix filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression...

5CVSS6.5AI score0.03235EPSS
Exploits1References1
OSV
OSVadded 2014/02/01 3:55 p.m.1 views

UBUNTU-CVE-2013-7177

config/filter.d/cyrus-imap.conf in the cyrus-imap filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression...

5CVSS5.9AI score0.03235EPSS
Exploits1References4
Rows per page
Query Builder