Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2026/04/15 7:46 p.m.5 views

GHSA-R4V4-5MWR-2FWR Improper restriction of the scope of accessible objects in Thymeleaf expressions

Impact A security bypass vulnerability exists in the expression execution mechanisms of Thymeleaf up to and including 3.1.3.RELEASE. Although the library provides mechanisms to prevent expression injection, it fails to properly restrict the scope of accessible objects, allowing specific potential...

9CVSS5.9AI score0.00649EPSS
Exploits0References3
Snyk
Snykadded 2026/04/15 7:46 p.m.3 views

Template Injection

Overview Affected versions of this package are vulnerable to Template Injection due to the TemplateEngine's improper restriction of accessible object scope during expression evaluation. An attacker can inject into sensitive objects to execute unauthorized actions. Remediation Upgrade...

9.2CVSS5.8AI score0.00649EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2024/04/30 9:57 a.m.1 views

kernel: PCI/DOE: Fix destroy_work_on_stack() race

A race condition flaw was found in the Linux kernel's PCI Data Object Exchange DOE implementation. The destroyworkonstack function is called after signaling completion, creating a race where the work struct can go out of scope before being destroyed. This triggers debug object warnings when...

5.8AI score0.00168EPSS
Exploits0References5
Rows per page
Query Builder