Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNNVD
CNNVDadded 2026/05/27 12:0 a.m.6 views

IBM QRadar 安全漏洞

IBM QRadar is a security information and event management platform developed by the American multinational company IBM. There are security vulnerabilities in the version of IBM QRadar 7.5.0 up to 7.5.0 UP15 Interim Fix 002. These vulnerabilities stem from privileged users uploading malicious back...

7.2CVSS5.7AI score0.00046EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/11 10:57 p.m.4 views

CVE-2025-43537

A path handling issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5. Restoring a maliciously crafted backup file may lead to modification of protected system files...

5.5AI score0.00034EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/02/11 12:0 a.m.1 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Versions of Apple iOS prior to 18.7.5 and Apple iPadOS prior to 18.7.5 contained security vulnerabilities...

5.5CVSS5.8AI score0.00034EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/05 12:0 a.m.2 views

EUVD-2025-37899

Snipe-IT before version 8.3.3 contains a remote code execution vulnerability that allows an authenticated attacker to upload a malicious backup file containing arbitrary files and execute system commands...

9.9CVSS7.8AI score0.00714EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-43437

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting XSS risk from malicious backup file...

6.1CVSS5AI score0.01529EPSS
Exploits0References2
Snyk
Snykadded 2024/11/11 12:47 p.m.1 views

Cross-site Scripting (XSS)

Overview moodle/moodle is a learning platform. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to insufficient sanitization of data during the restore process, from malicious backup files. Details Cross-site scripting or XSS is a code vulnerability that occurs whe...

6.1CVSS5.3AI score0.01529EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/10/28 12:0 a.m.2 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 18.1 and Apple iPadOS version 18.1, which stems from the fact that...

7.1CVSS6.3AI score0.01677EPSS
Exploits2References5
Positive Technologies
Positive Technologiesadded 2023/06/13 12:0 a.m.3 views

PT-2023-3651 · Rockwell Automation · Factorytalk System Services

Name of the Vulnerable Software and Affected Versions: FactoryTalk System Services affected versions not specified Description: The issue is related to improper authorization in the FTSSBackupRestore.exe executable, which may allow a local, authenticated non-admin user to load malicious...

5.9CVSS4.9AI score0.00003EPSS
Exploits0References6
Rows per page
Query Builder