Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-7203

Malware in sbrugna...

9.8CVSS9.5AI score0.00859EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-11931

Malware in sbrugna...

9.8CVSS9.5AI score0.00504EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:6 a.m.5 views

CVE-2024-48460

An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails...

4.3CVSS6.5AI score0.00216EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2025/01/17 12:30 a.m.7 views

Eugeny Tabby Sends Password Despite Host Key Verification Failure

An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails...

4.3CVSS6.5AI score0.00216EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2025/01/16 12:0 a.m.3 views

CVE-2024-48460

An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails...

4.6AI score0.00216EPSS
Exploits0References1
NVD
NVDadded 2022/11/30 11:15 p.m.11 views

CVE-2019-18265

Digital Alert Systems’ DASDEC software prior to version 4.1 contains a cross-site scripting XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the SSH username, username field of the login page, or via the HTTP host header. The injected content is stored in...

5.4CVSS0.0027EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/11/30 12:0 a.m.3 views

PT-2022-8170 · Digital Alert Systems · Dasdec

Name of the Vulnerable Software and Affected Versions: Digital Alert Systems' DASDEC software versions prior to 4.1 Description: The issue allows remote attackers to inject arbitrary web script or HTML via the SSH username, username field of the login page, or via the HTTP host header. The inject...

5.4CVSS5.3AI score0.0027EPSS
Exploits0References4
OSV
OSVadded 2019/02/08 6:29 p.m.1 views

CVE-2018-1352

A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH username variable...

9.8CVSS5.9AI score
Exploits0References1
Huawei
Huaweiadded 2014/08/20 12:0 a.m.28 views

Security Advisory- SSH Username Information Disclosure Vulnerability in Huawei Campus Switch

Some versions of Huawei Campus switch series products S9300/S9300E/S7700/S9700 /S5700/S6700/S5300/S6300/S2300/S2700/S3300/S3700 are affected by username information disclosure vulnerability. When the maintenance terminal of a Huawei Campus switch uses SSH to log in to a server, attackers can gues...

5.9CVSS5.2AI score0.00427EPSS
Exploits0Affected Software12
exploitpack
exploitpackadded 2012/02/27 12:0 a.m.14 views

Sysax 5.53 - SSH Username Remote Buffer Overflow Remote Code Execution (Egghunter)

Sysax 5.53 - SSH Username Remote Buffer Overflow Remote Code Execution Egghunter !/usr/bin/python Title: Sysax " sys.exit1 host = sys.argv1 port = intsys.argv2 egghunter = "\x66\x81\xca\xff\x0f\x42\x52\x6a\x02\x58\xcd\x2e\x3c\x05" "\x5a\x74\xef\xb8\x44\x4e\x57\x50\x8b\xfa\xaf\x75\xea\xaf"...

0.8AI score
Exploits0
Rows per page
Query Builder