Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6574 matches found

Prion
Prionadded 2022/11/16 1:15 p.m.14 views

Authentication flaw

Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6...

4.3CVSS4.6AI score0.00809EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2022/11/16 12:0 a.m.82 views

CVE-2022-4018

CVE-2022-4018 affects the GitHub repository ikus060/rdiffweb, with versions prior to 2.5.0a6 vulnerable due to a missing authentication mechanism for a critical function. Multiple sources (GHSA, OSV, NVD, CVE lists, PT security advisories) corroborate the issue and reference an access-control fai...

6.1CVSS4.8AI score0.00809EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2022/11/16 12:0 a.m.22 views

CVE-2022-2166 Improper Restriction of Excessive Authentication Attempts in mastodon/mastodon

Improper Restriction of Excessive Authentication Attempts in GitHub repository mastodon/mastodon prior to 4.0.0...

9.8CVSS9.5AI score0.01002EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2022/11/15 7:5 p.m.24 views

github.com/russellhaering/gosaml2 is vulnerable to NULL Pointer Dereference

Impact In versions prior to v0.7.0 it was possible for an attacker to supply an invalid assertion which would trigger a panic due to a nil-pointer dereference. Patches The issue was patched in v0.7.0, released on March 2, 2022. Workarounds Callers to gosaml2 can use recover to handle panics to...

7.5CVSS7.2AI score0.01662EPSS
Exploits0References8Affected Software2
Github Security Blog
Github Security Blogadded 2022/11/15 12:0 p.m.20 views

rdiffweb vulnerable to Insufficient Session Expiration

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

9.8CVSS9AI score0.00876EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2022/11/14 9:15 p.m.22 views

CVE-2022-3362

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

9.8CVSS0.00876EPSS
Exploits1References2
PyPA
PyPAadded 2022/11/14 9:15 p.m.5 views

PYSEC-2022-43000

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

9.8CVSS6.8AI score0.00876EPSS
Exploits1References5Affected Software1
Prion
Prionadded 2022/11/14 9:15 p.m.15 views

Session fixation

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

7.5CVSS9.5AI score0.00876EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2022/11/14 9:15 p.m.12 views

PYSEC-2022-43000

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

9.8CVSS6.8AI score0.00876EPSS
Exploits1References5
Cvelist
Cvelistadded 2022/11/14 12:0 a.m.27 views

CVE-2022-3362 Insufficient Session Expiration in ikus060/rdiffweb

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

6.1CVSS9.8AI score0.00876EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2022/11/14 12:0 a.m.6 views

CVE-2022-3993 Improper Restriction of Excessive Authentication Attempts in kareadita/kavita

Improper Restriction of Excessive Authentication Attempts in GitHub repository kareadita/kavita prior to 0.6.0.3...

9.4CVSS9.6AI score0.01051EPSS
Exploits1References2
OSV
OSVadded 2022/11/14 12:0 a.m.20 views

CVE-2022-3362 Insufficient Session Expiration in ikus060/rdiffweb

Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0...

6.1CVSS6.7AI score0.00876EPSS
Exploits1References4
OpenVAS
OpenVASadded 2022/11/14 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2783)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00854EPSS
Exploits12References2
Cvelist
Cvelistadded 2022/11/11 12:0 a.m.15 views

CVE-2022-3945 Improper Restriction of Excessive Authentication Attempts in kareadita/kavita

Improper Restriction of Excessive Authentication Attempts in GitHub repository kareadita/kavita prior to 0.6.0.3...

9.4CVSS5.6AI score0.009EPSS
Exploits1References2
NVD
NVDadded 2022/11/07 11:15 a.m.20 views

CVE-2022-3873

Cross-site Scripting XSS - DOM in GitHub repository jgraph/drawio prior to 20.5.2...

6.5CVSS0.00624EPSS
Exploits1References2
Cvelist
Cvelistadded 2022/11/07 12:0 a.m.25 views

CVE-2022-3873 Cross-site Scripting (XSS) - DOM in jgraph/drawio

Cross-site Scripting XSS - DOM in GitHub repository jgraph/drawio prior to 20.5.2...

6.5CVSS6.2AI score0.00624EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2022/11/07 12:0 a.m.10 views

CVE-2022-3873 Cross-site Scripting (XSS) - DOM in jgraph/drawio

Cross-site Scripting XSS - DOM in GitHub repository jgraph/drawio prior to 20.5.2...

6.5CVSS6.1AI score0.00624EPSS
Exploits1References2
OSV
OSVadded 2022/11/07 12:0 a.m.17 views

CVE-2022-3873 Cross-site Scripting (XSS) - DOM in jgraph/drawio

Cross-site Scripting XSS - DOM in GitHub repository jgraph/drawio prior to 20.5.2...

6.5CVSS6.7AI score0.00624EPSS
Exploits1References4
NVD
NVDadded 2022/11/05 2:15 p.m.26 views

CVE-2022-3869

Code Injection in GitHub repository froxlor/froxlor prior to 0.10.38.2...

6.5CVSS0.01265EPSS
Exploits1References2
Prion
Prionadded 2022/11/05 2:15 p.m.16 views

Code injection

Code Injection in GitHub repository froxlor/froxlor prior to 0.10.38.2...

5.8CVSS6.5AI score0.01265EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder