Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Patchstack
Patchstackadded 2025/09/22 6:43 p.m.3 views

WordPress Stock Message Plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Stock Message versions = 1.1.0...

7.1CVSS6.6AI score0.00017EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/08/22 10:6 p.m.4 views

WordPress Wptobe-memberships plugin <= 3.4.2 - Authenticated (Subscriber+) Arbitrary File Deletion vulnerability

Authenticated Subscriber+ Arbitrary File Deletion vulnerability discovered by Aril Aprilio forsak3n in WordPress Plugin Wptobe-memberships versions = 3.4.2...

8.1CVSS6.8AI score0.00704EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2025/04/04 2:28 p.m.10 views

GHSA-WG47-6JQ2-Q2HH MinIO performs incomplete signature validation for unsigned-trailer uploads

Impact This is a high priority vulnerability and users must upgrade ASAP. The signature component of the authorization may be invalid, which would mean that as a client you can use any arbitrary secret to upload objects given the user already has prior WRITE permissions on the bucket, Prior...

8.7CVSS7AI score0.01389EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2025/04/04 2:28 p.m.16 views

MinIO performs incomplete signature validation for unsigned-trailer uploads

Impact This is a high priority vulnerability and users must upgrade ASAP. The signature component of the authorization may be invalid, which would mean that as a client you can use any arbitrary secret to upload objects given the user already has prior WRITE permissions on the bucket, Prior...

8.7CVSS7AI score0.01389EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2024/12/30 12:0 a.m.3 views

PT-2024-32898 · Priority · Pri Web

Name of the Vulnerable Software and Affected Versions: Priority affected versions not specified Description: The issue involves exposure of sensitive information to unauthorized actors, classified as CWE-200. This means that sensitive data may be accessible to individuals who are not supposed to...

7.5CVSS6.8AI score0.00144EPSS
Exploits0References8
Code423n4
Code423n4added 2021/07/21 12:0 a.m.8 views

Unchecked transfers found in 3 contracts

Handle maplesyrup Vulnerability details Impact This is a high priority vulnerability because it definitely affects the way that funds are transferred and sent between the contracts. You want to make sure that you check the boolean value from these transfer functions in order to make sure that the...

6.9AI score
Exploits0
ThreatPost
ThreatPostadded 2015/05/11 3:1 p.m.13 views

Tor Cloud Shut Down Amid Lack of Support

The Tor Project has shuttered its cloud proxy service citing security vulnerabilities, usability bugs and a lack of resources. Tor offers its users the capacity to surf the Web anonymously, bouncing traffic through a series of relay servers so that no observer at any point can tell where that...

7.7AI score
Exploits0References1
Rows per page
Query Builder