Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2025/11/26 3:52 p.m.1 views

SUSE-SU-2025:4264-1 Security update for ruby2.5

This update for ruby2.5 fixes the following issues: - CVE-2024-35221: Fixed remote DoS via YAML manifest bsc1225905 - CVE-2024-47220: Fixed HTTP request smuggling in WEBrick bsc1230930 - CVE-2024-49761: Fixed ReDOS vulnerability by updating REXML to 3.3.9 bsc1232440 - CVE-2025-24294: Fixed denial...

8.7CVSS7AI score0.01429EPSS
Exploits0References18
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2013-3880

Malware in sbrugna...

4.3CVSS6.3AI score0.01795EPSS
Exploits1References4
OSV
OSVadded 2025/08/17 10:15 p.m.6 views

CVE-2025-9093

A security vulnerability has been detected in BuzzFeed App 2024.9 on Android. This affects an unknown part of the file AndroidManifest.xml of the component com.buzzfeed.android. The manipulation leads to improper export of android application components. The attack needs to be approached locally...

5.5CVSS5.1AI score0.00234EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/02/28 5:26 p.m.13 views

CVE-2025-27408 Manifest Uses a One-Way Hash without a Salt

Manifest offers users a one-file micro back end. Prior to version 4.9.2, Manifest employs a weak password hashing implementation that uses SHA3 without a salt. This exposes user passwords to a higher risk of being cracked if an attacker gains access to the database. Without the use of a salt,...

4.8CVSS0.00146EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/02/28 12:0 a.m.2 views

Manifest 安全漏洞

Manifest is a file backend program from the Manifest open source. A security vulnerability exists in Manifest versions prior to 4.9.1 that stems from the use of the unsalted SHA3 hash algorithm, increasing the risk of passwords being cracked...

4.8CVSS6.5AI score0.00146EPSS
Exploits0References3
BDU FSTEC
BDU FSTECadded 2024/11/07 12:0 a.m.4 views

The vulnerability of the App Manifest component of the JetBrains YouTrack software environment allows a hacker to perform cross-site scripting attacks.

The vulnerability of the App Manifest component in the JetBrains YouTrack project management and task management software is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows attackers to perform cross-site scripting attacks...

5.5CVSS5.2AI score0.00292EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2021/03/02 12:0 a.m.4 views

Google Android 竞争条件问题漏洞

Google Android is a Linux-based open source operating system from the US Google Open Handheld Consortium Google. Google Android suffers from a security vulnerability that stems from a lack of privilege checking in the manifest file of the SmartSpace program package, which may contain eavesdroppin...

6.9CVSS6.6AI score0.00097EPSS
Exploits0References3
Rows per page
Query Builder