Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.11 views

PT-2026-38915

Name of the Vulnerable Software and Affected Versions CloudStack Backup plugin versions 4.21.0.0 through 4.22.0.0 Description The CloudStack Backup plugin contains improper access logic. Authenticated users in environments where this plugin is enabled can access specific APIs to restore a volume...

8.1CVSS5.8AI score0.00512EPSS
Exploits0References7
OSV
OSVadded 2025/03/14 12:15 p.m.1 views

CVE-2024-12810

The JobCareer | Job Board Responsive WordPress Theme theme for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability checks on multiple functions in all versions up to, and including, 7.1. This makes it possible for authenticated attackers, wit...

8.1CVSS5.9AI score0.00315EPSS
Exploits0References2
OSV
OSVadded 2024/06/19 2:15 p.m.3 views

CVE-2024-38329

IBM Storage Protect for Virtual Environments: Data Protection for VMware 8.1.0.0 through 8.1.22.0 could allow a remote authenticated attacker to bypass security restrictions, caused by improper validation of user permission. By sending a specially crafted request, an attacker could exploit this...

7.7CVSS5.8AI score
Exploits0References2
NVD
NVDadded 2024/06/19 2:15 p.m.16 views

CVE-2024-38329

IBM Storage Protect for Virtual Environments: Data Protection for VMware 8.1.0.0 through 8.1.22.0 could allow a remote authenticated attacker to bypass security restrictions, caused by improper validation of user permission. By sending a specially crafted request, an attacker could exploit this...

7.7CVSS0.00473EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2022/05/13 1:18 a.m.13 views

Missing permission checks in Jenkins Periodic Backup Plugin allow every user to change settings

The Periodic Backup Plugin did not perform any permission checks, allowing any user with Overall/Read access to change its settings, trigger backups, restore backups, download backups, and also delete all previous backups via log rotation. Additionally, the plugin was not requiring requests to it...

8CVSS6.8AI score0.01072EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2017/10/04 1:0 a.m.45 views

CVE-2017-1000086

Summary: Multiple sources report a vulnerability in the Jenkins Periodic Backup Plugin (CVE-2017-1000086) involving missing permission checks and CSRF exposure. Affected component: Jenkins Periodic Backup Plugin (version 1.4 and earlier, per CNVD/CVE references). Root cause (as stated): The plugi...

8CVSS7.8AI score0.01072EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2000/05/02 12:0 a.m.35 views

mstream DDoS Handler Detection

The remote host appears to be running a mstream handler, which is a trojan that can be used to control your system or make it attack another network this is actually called a distributed denial of service attack tool It is very likely that this host has been compromised %NASLMINLEVEL 70300 C...

5CVSS5.4AI score0.02081EPSS
Exploits0References1
Rows per page
Query Builder