Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded yesterday5 views

CVE-2026-41267

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, an improper mass assignment JSON injection vulnerability in the account registration endpoint of Flowise Cloud allows unauthenticated attackers to inject server-managed fields and nested objec...

9.8CVSS7.4AI score0.00828EPSS
Exploits1References1
NVD
NVDadded 2026/04/23 8:16 p.m.1 views

CVE-2026-41267

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, an improper mass assignment JSON injection vulnerability in the account registration endpoint of Flowise Cloud allows unauthenticated attackers to inject server-managed fields and nested objec...

9.8CVSS0.00828EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/04/23 7:12 p.m.0 views

CVE-2026-41267

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, an improper mass assignment JSON injection vulnerability in the account registration endpoint of Flowise Cloud allows unauthenticated attackers to inject server-managed fields and nested objec...

8.1CVSS7.2AI score0.00828EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2024/09/17 12:0 a.m.1 views

Online Eyewear Shop 安全漏洞

Online Eyewear Shop is an online eyewear store by the individual developer Carlo Montero. A security vulnerability exists in Online Eyewear Shop version 1.0, which stems from an unknown part of the Cart Content Handler component, where the manipulation of the parameter cartid/id results in improp...

8.8CVSS6.4AI score0.01173EPSS
Exploits0References6
Cvelist
Cvelistadded 2024/03/12 8:12 a.m.15 views

CVE-2024-26002 PHOENIX CONTACT: File ownership manipulation in CHARX Series

An improper input validation in the Qualcom plctool allows a local attacker with low privileges to gain root access by changing the ownership of specific files...

7.8CVSS7.8AI score0.00055EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/12 8:12 a.m.17 views

CVE-2024-26002 PHOENIX CONTACT: File ownership manipulation in CHARX Series

An improper input validation in the Qualcom plctool allows a local attacker with low privileges to gain root access by changing the ownership of specific files...

7.8CVSS6.8AI score0.00055EPSS
Exploits0References1
Code423n4
Code423n4added 2022/01/30 12:0 a.m.6 views

Malicious Users Can Transfer Vault Collateral To Other Accounts To Extract Additional Yield From The Protocol

Handle leastwood Vulnerability details Impact ConvexYieldWrapper.sol is a wrapper contract for staking convex tokens on the user's behalf, allowing them to earn rewards on their deposit. Users will interact with the Ladle.sol contract's batch function which: Approves Ladle to move the tokens...

6.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2020/06/23 5:25 p.m.15 views

CVE-2019-3689

The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If...

10CVSS4.5AI score0.00336EPSS
Exploits0References3
Rows per page
Query Builder