Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2026/02/02 6:16 a.m.5 views

CVE-2025-13881

A flaw was found in Keycloak Admin API. This vulnerability allows an administrator with limited privileges to retrieve sensitive custom attributes via the /unmanagedAttributes endpoint, bypassing User Profile visibility settings...

2.7CVSS0.00012EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/06/13 12:0 a.m.1 views

PT-2023-3748 · Sap · Sap Netweaver

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Change and Transport System versions 702 through 757 Description: The issue is related to a lack of resource control mechanism in the Change and Transport System component of SAP NetWeaver. This allows an authenticated user with...

4CVSS7.2AI score0.00085EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2022/08/30 12:0 a.m.3 views

PT-2022-22152 · Dell · Dell Container Storage Modules

Name of the Vulnerable Software and Affected Versions: Dell Container Storage Modules version 1.2 Description: The issue is related to a path traversal vulnerability in the goiscsi and gobrick libraries. A remote authenticated malicious user with low privileges could exploit this, leading to...

8.8CVSS6.6AI score0.00392EPSS
Exploits0References4
OSV
OSVadded 2022/07/07 7:32 p.m.4 views

OPENSUSE-SU-2022:10043-1 Security update for python-ipython

This update for python-ipython fixes the following issues: - CVE-2022-21699: Confining executed process to have limited privileges. boo1194936...

8.8CVSS8.5AI score0.01381EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2022/03/24 12:0 a.m.1 views

PT-2022-17375 · Bluedon Information Security Technologies Co. · Internet Access Detector

Name of the Vulnerable Software and Affected Versions: Bluedon Information Security Technologies Co.,Ltd Internet Access Detector version 1.0 Description: The issue allows attackers to access the contents of the password file via unspecified vectors, resulting in an information leak...

7.5CVSS7.4AI score0.00316EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2019/04/01 12:0 a.m.59 views

CVE-2019-9193

DISPUTED In PostgreSQL 9.3 through 11.2, the “COPY TO/FROM PROGRAM” function allows superusers and users in the ‘pgexecuteserverprogram’ group to execute arbitrary code in the context of the database’s operating system user. This functionality is enabled by default and can be abused to run...

9CVSS5.5AI score0.93645EPSS
Exploits17References7
Symantec
Symantecadded 2017/03/14 12:0 a.m.53 views

Microsoft Windows DVD Maker CVE-2017-0045 Cross Site Request Forgery Vulnerability

Description Microsoft Windows DVD Maker is prone to an unspecified cross-site request forgery vulnerability because it fails to properly validate HTTP requests. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the affected application...

4.3CVSS0.9AI score0.0364EPSS
Exploits5Affected Software3
Symantec
Symantecadded 2010/07/13 12:0 a.m.14 views

Microsoft Outlook TNEF Stream With MAPI Attachment Remote Code Execution Vulnerability

Description Microsoft Outlook is prone to a remote code-execution vulnerability because it fails to properly verify attachments. Attackers can exploit this issue by enticing an unsuspecting user into opening a specially crafted email attachment. Successfully exploiting this issue will allow an...

0.3AI score
Exploits0References3Affected Software1
Rows per page
Query Builder