Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

770 matches found

Fedora
Fedoraadded 2014/12/25 5:35 a.m.25 views

[SECURITY] Fedora 19 Update: pyxdg-0.25-5.fc19

PyXDG is a python library to access freedesktop.org standards...

3.3CVSS2.7AI score0.00046EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2014/12/12 12:0 a.m.93 views

ESXi 5.1 < Build 2323236 Third-Party Libraries Multiple Vulnerabilities (remote check) (BEAST)

The remote VMware ESXi host is version 5.1 prior to build 2323236. It is, therefore, affected by the following vulnerabilities in bundled third-party libraries : - Multiple vulnerabilities exist in the bundled Python library. CVE-2011-3389, CVE-2012-0845, CVE-2012-0876, CVE-2012-1150,...

6.4CVSS7.1AI score0.03832EPSS
Exploits19References16
securityvulns
securityvulnsadded 2014/10/17 12:0 a.m.46 views

Bypassing blacklists based on IPy

IPy is a Python "class and tools for handling of IPv4 and IPv6 addresses and networks" https://github.com/haypo/python-ipy. This library is sometimes used to implement blacklists forbidding internal, private or loopback addresses. Using octal encoding supported by urllib2, it is possible to bypas...

0.7AI score
Exploits0
Packet Storm
Packet Stormadded 2014/05/30 12:0 a.m.46 views

webEdition CMS 2.8.0.0 Remote Command Execution

Advisory: Remote Command Execution in webEdition CMS Installer Script RedTeam Pentesting discovered a remote command execution vulnerability in the installer script of the webEdition CMS during a penetration test. If the installer script is not manually removed after installation, attackers canno...

0.1AI score0.01923EPSS
Exploits2
OSV
OSVadded 2014/01/28 12:55 a.m.1 views

DEBIAN-CVE-2014-1624

Race condition in the xdg.BaseDirectory.getruntimedir function in python-xdg 0.25 allows local users to overwrite arbitrary files by pre-creating /tmp/pyxdg-runtime-dir-fallback-victim to point to a victim-owned location, then replacing it with a symlink to an attacker-controlled location once th...

3.3CVSS6.7AI score0.00046EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2012/11/04 12:0 a.m.2 views

PT-2012-6134 · Mozilla +1 · Zamboni +1

Name of the Vulnerable Software and Affected Versions: Zamboni affected versions not specified Description: The issue is related to the contribution feature in Zamboni, which fails to verify the server hostname against the domain name in the subject's Common Name CN or subjectAltName field of the...

7.4CVSS7.1AI score0.00146EPSS
Exploits1References3
OSV
OSVadded 2012/09/07 12:0 a.m.10 views

DSA-2541-1 beaker - information disclosure

Bulletin has no description...

4.3CVSS6.3AI score0.00603EPSS
Exploits0
Ubuntu
Ubuntuadded 2012/06/06 1:34 p.m.60 views

USN-1465-2: Ubuntu One storage protocol update

USN-1465-1 fixed a vulnerability in the Ubuntu One Client. This update adds a required fix to the Ubuntu One storage protocol library. Original advisory details: It was discovered that the Ubuntu One Client incorrectly validated server certificates when using HTTPS connections. If a remote attack...

7.5CVSS5.5AI score0.00653EPSS
Exploits0
OSV
OSVadded 2009/10/22 4:30 p.m.0 views

PYSEC-2009-18

The pygresql module 3.8.1 and 4.0 for Python does not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings...

7.5CVSS5.8AI score0.00579EPSS
Exploits0References5
GithubExploit
GithubExploitadded 2009/02/02 3:41 a.m.1 views

paramiko

No d...

7AI score
Exploits0
Rows per page
Query Builder