Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

Circl
Circladded 2026/02/07 7:20 p.m.5 views

CVE-2024-5483

creationtimestamp| type| source ---|---|--- 2026-02-07 19:20:05+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-5483.yaml 2026-02-08 21:02:56+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3meetgdnlbe2k...

5.3CVSS5AI score0.05516EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.1 views

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2024-8389:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8389:01 advisory. golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS CVE-2023-45288 golang: net/http/cookiejar: incorrect forwarding of...

7.5CVSS7.4AI score0.64852EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.2 views

MiracleLinux 9 : podman-4.6.1-5.el9 (AXSA:2023-6760:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6760:07 advisory. golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 net/http, golang.org/x/net/http2: avoid quadratic complexity in HPA...

9.8CVSS7.3AI score0.00759EPSS
Exploits1References14
Tenable Nessus
Tenable Nessusadded 2025/11/24 12:0 a.m.6 views

Oracle Business Intelligence Publisher (OAS) (October 2025 CPU)

The 7.6.0.0.0, and 8.2.0.0.0 versions of Oracle Business Intelligence Publisher installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2025 CPU advisory. - Vulnerability in the Oracle BI Publisher product of Oracle Analytics component: Web Service API...

6.5CVSS6.7AI score0.0031EPSS
Exploits0References4
Circl
Circladded 2025/10/07 4:55 a.m.3 views

CVE-2019-25152

creationtimestamp| type| source ---|---|--- 2025-10-07 04:55:00+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2019/CVE-2019-25152.yaml 2025-10-08 21:02:22+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m2pk24lglz2i...

7.2CVSS6AI score0.27125EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-0325

Malware in sbrugna...

9.3CVSS8AI score0.00518EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-0209

Malware in sbrugna...

9.3CVSS8.1AI score0.00735EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-0565

Malware in sbrugna...

7.8CVSS7.5AI score0.01343EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-0230

Malware in sbrugna...

8.1CVSS8.1AI score0.00163EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-24990

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00059EPSS
Exploits1References41
OSV
OSVadded 2025/07/29 1:38 p.m.2 views

RLSA-2025:10672 Moderate: go-toolset:rhel8 security update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: net/http: Sensitive headers not cleared on cross-origin redirect in net/http CVE-2025-4673 For more details about the security issues, including the impact, a CVSS score,...

6.8CVSS7.1AI score0.00074EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 8:7 a.m.7 views

CVE-2019-10251

The UCWeb UC Browser application through 2019-03-26 for Android uses HTTP to download certain modules associated with PDF and Microsoft Office files related to libpicsel, which allows MITM attacks...

5.9CVSS6.9AI score0.00156EPSS
Exploits1References1
Circl
Circladded 2025/02/26 6:25 a.m.3 views

CVE-2024-13630

creationtimestamp| type| source ---|---|--- 2025-02-26 06:25:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5464 2025-02-26 06:25:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5464 2026-02-07 03:40:08+00:00| confirmed|...

6.1CVSS7.7AI score0.01725EPSS
Exploits1References3
Mageia
Mageiaadded 2025/01/30 6:36 p.m.10 views

Updated git-lfs packages fix security vulnerability

Git LFS permits exfiltration of credentials via crafted HTTP URLs. CVE-2024-53263...

8.5CVSS8.2AI score0.00326EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/01/21 12:0 a.m.2 views

PT-2025-4241 · Oracle · Oracle E-Business Suite +1

Name of the Vulnerable Software and Affected Versions: Oracle Project Foundation versions 12.2.3 through 12.2.13 Description: The issue is related to the Technology Foundation component of Oracle Project Foundation in Oracle E-Business Suite. It can be easily exploited by an attacker with reduced...

8.5CVSS8.6AI score0.00284EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/12/17 5:42 p.m.13 views

CVE-2024-49820 IBM Security Guardium Key Lifecycle Manager information disclosure

IBM Security Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2.0, and 4.2.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man i...

3.7CVSS6.4AI score0.00042EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/11/28 12:0 a.m.15 views

Debian dla-3970 : python3-twisted - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3970 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3970-1 [email protected]...

8.3CVSS6.1AI score0.67844EPSS
Exploits2References10
Veracode
Veracodeadded 2024/08/28 4:2 a.m.11 views

Request Smuggling

Apache Traffic Server is vulnerable to Request Smuggling. The vulnerability is caused due to the server sending malformed HTTP chunked trailer section to origin servers...

9.1CVSS6.6AI score0.00453EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2024/05/29 8:37 p.m.42 views

Security Bulletin: IBM Aspera Console has addressed multiple HTTP vulnerabilities (CVE-2022-43841, CVE-2024-24795, CVE-2023-38709)

Summary This Security Bulletin addresses security vulnerabilities related to HTTP responses that would allow the attacker to perform further attacks, such as Web cache poisoning or cross-site scripting, and possibly obtain sensitive information CVE-2022-43841, CVE-2024-24795, CVE-2023-38709...

7.3CVSS6.9AI score0.04358EPSS
Exploits0Affected Software4
OSV
OSVadded 2024/03/27 4:34 a.m.40 views

RLSA-2024:1444 Important: nodejs:16 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: nodejs: reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks CVE-2024-22019 nodejs: HTTP/2: Multiple HTTP/2 enabled...

7.5CVSS8.7AI score0.944EPSS
Exploits19References3
Rows per page
Query Builder