Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

NVD
NVDadded 2026/06/10 6:16 p.m.6 views

CVE-2026-45062

FrankenPHP is a modern application server for PHP. From version 1.11.2 to before version 1.12.3, the splitPos function in cgi.go misuses golang.org/x/text/search with search.IgnoreCase when the request path contains a non-ASCII byte. Two distinct flaws in that fallback let an attacker mislead...

8.1CVSS0.00568EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/03/19 12:0 a.m.4 views

SiYuan 安全漏洞

SiYuan is a privacy-oriented personal knowledge management system developed by SiYuan itself. Versions of SiYuan 3.6.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from improper cleaning of upload file paths, allowing administrators to write files to arbitrary...

9.1CVSS6.8AI score0.00434EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/10/09 12:0 a.m.3 views

PT-2025-41357

Name of the Vulnerable Software and Affected Versions WP Travel Engine – Tour Booking Plugin – Tour Operator Software versions prior to 6.6.7 Description The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress has a flaw that allows arbitrary file deletion through...

9.8CVSS8AI score0.00834EPSS
Exploits0References7
BDU FSTEC
BDU FSTECadded 2023/01/23 12:0 a.m.1 views

The vulnerability of the Ruby Sinatra web application development framework lies in its name-path limitation flaws, which allow attackers to access confidential data.

The vulnerability of the Ruby Sinatra web application development framework is related to shortcomings in pathname restrictions for directories. Exploiting this vulnerability allows an attacker operating remotely to gain access to confidential data...

7.8CVSS6.6AI score0.0193EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTECadded 2019/10/29 12:0 a.m.2 views

The vulnerability of the Webvrpcs software for remote monitoring from Advantech WebAccess allows a intruder to delete files.

The vulnerability of the Webvrpcs software for remote monitoring from Advantech WebAccess stems from deficiencies in path checking before the path is used for file operations. Exploiting this vulnerability allows a malicious actor to delete files under the authority of an administrator...

9.1CVSS5.5AI score0.03106EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessusadded 2004/07/06 12:0 a.m.40 views

RHEL 2.1 / 3 : mozilla (RHSA-2004:110)

Updated Mozilla packages that fix vulnerabilities in S/MIME parsing as well as other issues and bugs are now available. Mozilla is a Web browser and mail reader, designed for standards compliance, performance and portability. Network Security Services NSS is a set of libraries designed to support...

7.5CVSS5.2AI score0.07643EPSS
Exploits2References10
Rows per page
Query Builder