Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2026/04/03 9:59 p.m.2 views

GHSA-53MR-6C8Q-9789 LiteLLM: Privilege escalation via unrestricted proxy configuration endpoint

Impact The /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to do the following: - Modify proxy configuration and environment variables - Register custom pass-through endpoint handlers pointing to...

8.7CVSS6.3AI score0.1938EPSS
Exploits2References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-0018

Malware in sbrugna...

6.5CVSS6.4AI score0.00831EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/22 4:57 p.m.9 views

CVE-2020-13922

Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface...

6.5CVSS6.9AI score0.00831EPSS
Exploits0
CNVD
CNVDadded 2021/05/19 12:0 a.m.3 views

Logic Flaw Vulnerability in CourseSEL

CourseSEL is an online course selection system. A logic flaw vulnerability exists in CourseSEL. An attacker can exploit the vulnerability to log in to an arbitrary account and override the password change...

7.2AI score
Exploits0
NVD
NVDadded 2021/01/11 10:15 a.m.16 views

CVE-2020-13922

Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface...

6.5CVSS6.5AI score0.00831EPSS
Exploits0References1
OSV
OSVadded 2021/01/11 10:15 a.m.21 views

CVE-2020-13922

Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface...

6.5CVSS7.2AI score
Exploits0References1
PyPA
PyPAadded 2021/01/11 10:15 a.m.4 views

PYSEC-2021-876

Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface...

6.5CVSS7AI score0.00831EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2021/01/11 12:0 a.m.5 views

Apache DolphinScheduler Permission License and Access Control Issues Vulnerability

Apache DolphinScheduler is a distributed DAG visualization-based workflow task scheduling system from the Apache Foundation. A security vulnerability exists in Apache DolphinScheduler prior to 1.3.2, which allows normal users to override other users' passwords via the API interface...

6.5CVSS6.6AI score0.00831EPSS
Exploits0References2
Kitploit
Kitploitadded 2019/07/21 9:55 p.m.177 views

SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules Misconfigurations And Vulnerabilities Within Sudo

If you like the project and for my personal motivation so as to develop other tools please a +1 star SUDOKILLER SUDOKILLER is a tool which help to abuse SUDO in different ways and with the main objective of performing a privilege escalation on linux environment. The tool helps to identify...

7.6AI score
Exploits0References1
securityvulns
securityvulnsadded 2000/08/24 12:0 a.m.43 views

Account Manager CGI Vulnerability

Product: Account Manager Versions: ALL including LITE and PRO haven't been able to test ENTERPRISE OS: Unix and Winnt Vendor: Notified, http://www.cgiscriptcenter.com/ The Problem: The Script allows any remote user access to the Administration Control Panel through overwriting the Admin Password...

1.1AI score
Exploits0
Rows per page
Query Builder