Lucene search
K

12 matches found

Imperva Blog
Imperva Blog
added 2026/04/06 10:29 p.m.7 views

Why AI Bot Protection and Control Are Essential for Application Security

AI-driven automation is no longer emerging. It is already integrated and accepted as internet traffic. From AI assistants and crawlers to enterprise automation tools, websites are now routinely accessed by non-human actors operating at scale. Vulnerabilities or weaknesses in your application...

5.5AI score
Exploits0
NVD
NVD
added 2026/04/06 6:16 p.m.6 views

CVE-2026-35046

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to 2.6.4, Tandoor Recipes allows authenticated users to inject arbitrary tags into recipe step instructions. The bleach.clean sanitizer explicitly whitelists the tag, causing the backend to...

5.4CVSS0.00173EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/13 10:47 a.m.6 views

Malicious code in ighack (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 889207a729f6b97c385d6c0afe217776d10331cdf7e5dd511f80e0d01e899842 Instagram hacking tool that besides abusing the Instagram API, also automatically uses user's credentials to follow hardcoded accounts. --- Category: MALICIOUS...

5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/06 4:16 p.m.3 views

CVE-2025-15602

Snipe-IT versions prior to 8.3.7 contain sensitive user attributes related to account privileges that are insufficiently protected against mass assignment. An authenticated, low-privileged user can craft a malicious API request to modify restricted fields of another user account, including the...

8.8CVSS5.8AI score0.0046EPSS
Exploits1References4
Akamai Blog
Akamai Blog
added 2025/11/24 2:0 p.m.7 views

Aggregated Rate Limiting Defends Against Large-Scale and DDoS Attacks

Discover how Akamai’s new aggregated rate limiting strengthens defenses against large-scale, distributed DDoS attacks, and API abuse with smarter detection...

7AI score
Exploits0
OSV
OSV
added 2024/09/04 5:15 p.m.2 views

CVE-2024-45170

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper or missing access control, low privileged users can use administrative functions of the C-MOR web interface. It was found out that different functions are only available to administrative users. However, acces...

8.1CVSS5.8AI score0.00648EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2023/12/23 2:42 a.m.2 views

SUSE CVE-2023-6866

TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in other APIs which expect TypedArrays to always succeed. This vulnerability affects Firefox 121...

8.8CVSS8.4AI score0.00681EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/12/19 12:0 a.m.3 views

Mozilla Firefox Security Vulnerability

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 121, which stems from a lack of exception handling in TypedArray, leading to abuse of other APIs...

8.8CVSS6.5AI score0.00681EPSS
Exploits0References9
OSV
OSV
added 2022/10/18 2:15 p.m.4 views

CVE-2022-40684

An authentication bypass using an alternate path or channel CWE-288 in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform...

9.8CVSS7.3AI score0.99984EPSS
Exploits25References4
CNNVD
CNNVD
added 2022/07/22 12:0 a.m.2 views

Cisco Small Business 缓冲区错误漏洞

Cisco Small Business is a switch from Cisco USA. The Cisco Small Business router suffers from a buffer error vulnerability that originates from an authenticated, remote attacker utilizing its web-based management interface to insufficiently validate the user field in incoming HTTP packets. An...

7.2CVSS7.8AI score0.00876EPSS
Exploits0References3
OSV
OSV
added 2017/03/14 5:59 p.m.2 views

DEBIAN-CVE-2017-5985

lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...

3.3CVSS5.3AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2016/06/04 2:59 p.m.1 views

CVE-2016-1403

CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005...

7.8CVSS5.9AI score0.0051EPSS
Exploits0References1
Rows per page
Query Builder