Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6574 matches found

OSV
OSVadded 2023/07/21 2:37 p.m.21 views

CVE-2023-3819 Exposure of Sensitive Information to an Unauthorized Actor in pimcore/pimcore

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4...

7.6CVSS6.9AI score0.00551EPSS
Exploits1References4
OSV
OSVadded 2023/07/19 1:15 a.m.5 views

PYSEC-2023-308

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0...

10CVSS9.5AI score0.70736EPSS
Exploits1References5
Prion
Prionadded 2023/07/19 1:15 a.m.18 views

Path traversal

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0...

7.5CVSS9.5AI score0.70736EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/07/19 12:53 a.m.8 views

CVE-2023-3765 Absolute Path Traversal in mlflow/mlflow

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0...

10CVSS6.7AI score0.70736EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/07/19 12:53 a.m.236 views

CVE-2023-3765 Absolute Path Traversal in mlflow/mlflow

Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0...

10CVSS9.7AI score0.70736EPSS
Exploits1References2
CVE
CVEadded 2023/07/19 12:53 a.m.98 views

CVE-2023-3765

MLflow (mlflow/mlflow) prior to version 2.5.0 contains an Absolute Path Traversal vulnerability. The issue arises in an MLflow repository and can lead to unauthorized access to sensitive information stored on the server. According to the connected sources, the affected component is mlflow/mlflow’...

10CVSS9.4AI score0.70736EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2023/07/17 6:16 a.m.16 views

CVE-2023-3700 Authorization Bypass Through User-Controlled Key in alextselegidis/easyappointments

Authorization Bypass Through User-Controlled Key in GitHub repository alextselegidis/easyappointments prior to 1.5.0...

6.3CVSS4.7AI score0.00374EPSS
Exploits1References4
NVD
NVDadded 2023/07/17 1:15 a.m.34 views

CVE-2023-3696

Prototype Pollution in GitHub repository automattic/mongoose prior to 7.3.4...

10CVSS0.0101EPSS
Exploits1References2
Prion
Prionadded 2023/07/17 1:15 a.m.21 views

Code injection

Prototype Pollution in GitHub repository automattic/mongoose prior to 7.3.4...

6.4CVSS9.4AI score0.0101EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2023/07/17 12:0 a.m.25 views

CVE-2023-3696 Prototype Pollution in automattic/mongoose

Prototype Pollution in GitHub repository automattic/mongoose prior to 7.3.4...

10CVSS9.3AI score0.0101EPSS
Exploits1References4
Cvelist
Cvelistadded 2023/07/17 12:0 a.m.37 views

CVE-2023-3696 Prototype Pollution in automattic/mongoose

Prototype Pollution in GitHub repository automattic/mongoose prior to 7.3.4...

10CVSS9.7AI score0.0101EPSS
Exploits1References2
CVE
CVEadded 2023/07/17 12:0 a.m.226 views

CVE-2023-3696

CVE-2023-3696 affects the GitHub repository automattic/mongoose, with the vulnerability present in versions before 7.3.4. The root cause is a prototype pollution flaw in the code path used for object merging. Exploitation details are not provided in the supplied documents, but CVSS metrics indica...

10CVSS9.4AI score0.0101EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2023/07/17 12:0 a.m.14 views

Authorization Bypass Through User-Controlled Key

Authorization Bypass Through User-Controlled Key in GitHub repository alextselegidis/easyappointments prior to 1.5.0...

6.3CVSS7AI score0.00374EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blogadded 2023/07/16 3:30 a.m.25 views

Admidio vulnerable to Unrestricted Upload of File with Dangerous Type

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10...

7.2CVSS7AI score0.00835EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2023/07/16 1:15 a.m.27 views

CVE-2023-3692

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10...

7.2CVSS0.00835EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/07/16 12:0 a.m.30 views

CVE-2023-3692 Unrestricted Upload of File with Dangerous Type in admidio/admidio

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10...

6.7CVSS7.2AI score0.00835EPSS
Exploits1References2
GitLab Advisory Database
GitLab Advisory Databaseadded 2023/07/16 12:0 a.m.14 views

Unrestricted Upload of File with Dangerous Type

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10...

7.2CVSS7AI score0.00835EPSS
Exploits1References4Affected Software1
Prion
Prionadded 2023/07/14 1:15 p.m.14 views

Sql injection

SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.24...

5.8CVSS7.3AI score0.00738EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/07/14 9:27 a.m.14 views

CVE-2023-3672 Cross-site Scripting (XSS) - DOM in plaidweb/webmention.js

Cross-site Scripting XSS - DOM in GitHub repository plaidweb/webmention.js prior to 0.5.5...

7.3CVSS6.4AI score0.00428EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/07/14 12:0 a.m.11 views

CVE-2023-3668 Improper Encoding or Escaping of Output in froxlor/froxlor

Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21...

9.1CVSS6.8AI score0.00835EPSS
Exploits1References2
Rows per page
Query Builder