Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 2026/04/22 12:0 a.m.7 views

PT-2026-36880

Name of the Vulnerable Software and Affected Versions OpenC3 COSMOS versions prior to 7.0.0 Description The Command Sender UI uses an unsafe eval function on array-like command parameters. This allows a user-supplied payload to execute in the browser when sending a command, creating a self-XSS...

4.6CVSS6.1AI score0.002EPSS
Exploits1References8
GithubExploit
GithubExploitadded 2026/04/18 11:6 a.m.149 views

Exploit for Incorrect Resource Transfer Between Spheres in Openclaw

CVE-2026-25253: One-Click RCE in OpenClaw via Auth Token Theft...

8.8CVSS5.9AI score0.08016EPSS
Exploits5
OSV
OSVadded 2026/03/04 4:16 p.m.4 views

CVE-2025-62879

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens both accessKey and secretKey into the rancher-backup-operator pod's logs...

4.9CVSS5.7AI score0.0034EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/04 3:8 p.m.4 views

CVE-2025-62879 Rancher Backup Operator pod's logs leak S3 tokens

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens both accessKey and secretKey into the rancher-backup-operator pod's logs...

6.8CVSS5.8AI score0.0034EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/03/04 12:0 a.m.7 views

Backup and Restore Operator 日志信息泄露漏洞

Backup and Restore Operator is an open-source Kubernetes application for backup and restoration. The Backup and Restore Operator has a vulnerability related to log information leakage, which stems from the S3 tokens being leaked into the logs of the rancher-backup-operator pod...

6.8CVSS7.2AI score0.0034EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/01/24 12:0 a.m.4 views

PT-2026-4544

ChatterMate is a no-code AI chatbot agent framework. In versions 1.0.8 and below, the chatbot accepts and executes malicious HTML/JavaScript payloads when supplied as chat input. Specifically, an payload containing a javascript: URI can be processed and executed in the browser context. This allow...

9.3CVSS5.4AI score0.00302EPSS
Exploits1References4
OSV
OSVadded 2025/12/11 2:24 p.m.2 views

USN-7926-1 keystone vulnerabilities

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges. CVE-2025-65073 It was discovered that OpenStack Keystone only validated the first 72 bytes of an...

7.5CVSS6.4AI score0.01272EPSS
Exploits2References4
The Hacker News
The Hacker Newsadded 2025/09/24 1:55 p.m.3 views

Two Critical Flaws Uncovered in Wondershare RepairIt Exposing User Data and AI Models

Cybersecurity researchers have disclosed two security flaws in Wondershare RepairIt that exposed private user data and potentially exposed the system to artificial intelligence AI model tampering and supply chain risks. The critical-rated vulnerabilities in question, discovered by Trend Micro, ar...

9.4CVSS8AI score0.03736EPSS
Exploits0
OSV
OSVadded 2025/01/27 12:15 p.m.3 views

CVE-2024-55931

Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access if a user's session is compromised. The patch for this vulnerability will be included in a future release of Workplace Suite, and customers will be notified through an update to the security bulletin...

6.5CVSS5.8AI score0.0033EPSS
Exploits0References1
Rows per page
Query Builder