Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNNVD
CNNVDadded 2026/02/19 12:0 a.m.5 views

NesterSoft WorkTime 安全漏洞

NesterSoft WorkTime is a project tracking software developed by the Canadian company NesterSoft. NesterSoft WorkTime has a security vulnerability that stems from unauthorized inspections, which may lead to the resetting of database configurations...

5.3CVSS5.8AI score0.00257EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/23 12:30 a.m.3 views

EUVD-2023-60232

Screen SFT DAB 600/C Firmware 1.9.3 contains a weak session management vulnerability that allows attackers to bypass authentication controls by reusing IP-bound session identifiers. Attackers can exploit the vulnerable deviceManagement API endpoint to reset device configurations by sending crafte...

8.7CVSS6.6AI score0.00456EPSS
Exploits2References6
OSV
OSVadded 2025/12/22 10:16 p.m.3 views

CVE-2023-53970

Screen SFT DAB 600/C Firmware 1.9.3 contains a weak session management vulnerability that allows attackers to bypass authentication controls by reusing IP-bound session identifiers. Attackers can exploit the vulnerable deviceManagement API endpoint to reset device configurations by sending crafte...

8.7CVSS5.8AI score0.00456EPSS
Exploits2References5
NVD
NVDadded 2025/12/22 10:16 p.m.3 views

CVE-2023-53970

Screen SFT DAB 600/C Firmware 1.9.3 contains a weak session management vulnerability that allows attackers to bypass authentication controls by reusing IP-bound session identifiers. Attackers can exploit the vulnerable deviceManagement API endpoint to reset device configurations by sending crafte...

8.7CVSS0.00456EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.10 views

EUVD-2022-30450

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00891EPSS
Exploits5References1
OSV
OSVadded 2025/07/08 11:15 a.m.3 views

CVE-2025-20997

Incorrect default permission in Framework for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to reset some configuration of Galaxy Watch...

5.5CVSS5.8AI score0.00116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2022/08/22 3:15 p.m.2 views

CVE-2022-25810

The Transposh WordPress Translation WordPress plugin through 1.0.8 exposes a couple of sensitive actions such has “tpreset” under the Utilities tab /wp-admin/admin.php?page=tputils, which can be used/executed as the lowest-privileged user. Basically all Utilities functionalities are vulnerable th...

6.5CVSS6.8AI score0.00891EPSS
Exploits5References2
OSV
OSVadded 2022/08/22 3:15 p.m.4 views

CVE-2022-25810

The Transposh WordPress Translation WordPress plugin through 1.0.8 exposes a couple of sensitive actions such has “tpreset” under the Utilities tab /wp-admin/admin.php?page=tputils, which can be used/executed as the lowest-privileged user. Basically all Utilities functionalities are vulnerable th...

6.5CVSS6.9AI score0.00891EPSS
Exploits5References1
WPVulnDB
WPVulnDBadded 2022/07/26 12:0 a.m.24 views

Transposh WordPress Translation <= 1.0.8 - Subscriber+ Unauthorised Calls

The plugin exposes a couple of sensitive actions such has “tpreset” under the Utilities tab /wp-admin/admin.php?page=tputils, which can be used/executed as the lowest-privileged user. Basically all Utilities functionalities are vulnerable this way, which involves resetting configurations and...

6.5CVSS0.5AI score0.00891EPSS
Exploits5Affected Software1
Rows per page
Query Builder