Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4524 matches found

Positive Technologies
Positive Technologiesadded 2025/10/22 12:0 a.m.5 views

PT-2025-46556

Name of the Vulnerable Software and Affected Versions Ceph affected versions not specified Description A denial-of-service issue exists in Ceph’s RGW component due to improper input validation. Specifically, providing an empty string as the content for the x-amz-copy-source argument when putting ...

7.8CVSS6.4AI score0.0039EPSS
Exploits1References31
Tenable Nessus
Tenable Nessusadded 2025/10/17 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-62491

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Use-After-Free UAF vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises...

8.8CVSS6AI score0.00371EPSS
Exploits1References3
Patchstack
Patchstackadded 2025/10/15 12:56 a.m.6 views

WordPress External Login plugin <= 1.11.2 - Authenticated (Subscriber+) Sensitive Data Exposure via Test Connection vulnerability

Authenticated Subscriber+ Sensitive Data Exposure via Test Connection vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin External Login versions = 1.11.2...

4.3CVSS6.8AI score0.00245EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/10/14 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-1335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line o...

9.3CVSS7.2AI score0.94106EPSS
Exploits10References2
Positive Technologies
Positive Technologiesadded 2025/10/11 12:0 a.m.4 views

PT-2025-42477

Name of the Vulnerable Software and Affected Versions Webmin version 2.510 Description Webmin version 2.510 has a flaw in the password reset functionality forgot send.cgi. The reset link sent to users is created using the HTTP Host header through the get webmin email url function. An attacker can...

8.5CVSS6.6AI score0.00416EPSS
Exploits1References15
OSV
OSVadded 2025/10/10 8:1 p.m.3 views

CVE-2025-61930 Emlog Pro has CSRF issue that Enables Admin Password Reset

Emlog is an open source website building system. Emlog Pro versions 2.5.19 and earlier are vulnerable to Cross‑Site Request Forgery CSRF on the password change endpoint. An attacker can trick a logged‑in administrator into submitting a crafted POST request to change the admin password without...

8.1CVSS7AI score0.00197EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tipc: do not update mtu if msgmax is too small in mtu negotiation When doing link mtu negotiation, a malicious peer may send Activate msg with a very small mtu,...

5.5CVSS6.1AI score0.00135EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-59149

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In version 8.0.0, rules usi...

6.2CVSS6AI score0.00189EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-53582

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds Fix a stack-out-of- bounds read in brcmfmac that occurs when 'buf' that is...

5.5CVSS6.2AI score0.00142EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-59734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be...

8.7CVSS6.2AI score0.00165EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-39910

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/vmalloc, mm/kasan: respect gfp mask in kasanpopulatevmalloc kasanpopulatevmalloc and its helpers ignore the caller's gfpmask and always allocate memory usin...

5.5CVSS6AI score0.00093EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-11206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page...

7.1CVSS8.4AI score0.00191EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-39923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: qcom: bamdma: Fix DT error handling for num-channels/ees When we don't have a clock specified in the device tree, we have no way to ensure the BAM is...

5.5CVSS6AI score0.0014EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53593

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: Release folio lock on fscache read hit. Under the current code, when cifsreadpageworker is called, the call contract is that the callee should unlock the...

5.5CVSS6.1AI score0.00132EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/10/08 12:0 a.m.5 views

PT-2025-41311

Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A security flaw exists in PHPGurukul Beauty Parlour Management System 1.1. The issue involves SQL injection due to manipulation of the searchdata argument within an unknown...

9.8CVSS7.3AI score0.00376EPSS
Exploits1References9
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-11146

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflected Cross-site scripting XSS in Apt-Cacher-NG v3.2.1. The vulnerability allows an attacker to execute malicious scripts XSS in the web management...

5.4CVSS5.8AI score0.00164EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-61639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files...

6.3CVSS5.9AI score0.0022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-61774

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PyVista provides 3D plotting and mesh analysis through an interface for the Visualization Toolkit VTK. Version 0.46.3 of the PyVista Project is vulnerable to...

9.3CVSS6.4AI score0.00592EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-50442

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: Validate buffer length while parsing index indxread is called when we have some NTFS directory operations that need more information from the index...

7.1CVSS7.2AI score0.00149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53667

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: cdcncm: Deal with too low values of dwNtbOutMaxSize Currently in cdcncmchecktxmax, if dwNtbOutMaxSize is lower than the calculated min value, but greater...

5.5CVSS6.1AI score0.00134EPSS
Exploits0References3
Rows per page
Query Builder