Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/10 9:30 p.m.9 views

EUVD-2026-28999

Net::CIDR::Lite versions before 0.24 for Perl does not properly consider extraneous zero characters in CIDR mask values, which may allow IP ACL bypass. Mask forms like "/00" and "/01" pass validation and parse to the same prefix as their unpadded value. See also CVE-2026-45190...

5.8AI score0.0007EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/06 9:31 p.m.4 views

CVE-2026-35409

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.16.0, a Server-Side Request Forgery SSRF protection bypass has been identified and fixed in Directus. The IP address validation mechanism used to block requests to local and private networks could be...

7.7CVSS5.8AI score0.00014EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-2498

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An improper access control in Gitlab EE affecting all versions from 12.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that under certain...

4.3CVSS5.6AI score0.00053EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/08/15 5:30 p.m.3 views

CVE-2025-2498

An improper access control in Gitlab EE affecting all versions from 12.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that under certain conditions could have allowed users to view assigned issues from restricted groups by bypassing IP restrictions...

4.3CVSS7AI score0.00053EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2025/08/13 5:27 p.m.3 views

CVE-2025-2498

Removed by vendor...

4.3CVSS5.8AI score0.00053EPSS
Exploits0
OSV
OSVadded 2025/08/13 5:27 p.m.3 views

CVE-2025-2498 Insufficient Granularity of Access Control in GitLab

An improper access control in Gitlab EE affecting all versions from 12.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that under certain conditions could have allowed users to view assigned issues from restricted groups by bypassing IP restrictions...

3.1CVSS6.4AI score0.00053EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2023/09/08 12:0 a.m.3 views

PT-2023-23104 · Ibm · Ibm Aspera Faspex

Name of the Vulnerable Software and Affected Versions: IBM Aspera Faspex versions 4.0 through 4.4.2 IBM Aspera Faspex versions 5.0 through 5.0.5 Description: The issue allows a malicious actor to bypass IP whitelist restrictions using a specially crafted HTTP request. Recommendations: For IBM...

7.5CVSS7.5AI score0.00018EPSS
Exploits0References10
CNNVD
CNNVDadded 2022/08/01 12:0 a.m.3 views

WordPress plugin YOP Poll 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

5.3CVSS5.8AI score0.00197EPSS
Exploits1References2
Rows per page
Query Builder