Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

160 matches found

CNVD
CNVDadded 2026/04/08 12:0 a.m.0 views

OpenClaw has an unspecified vulnerability (CNVD-2026-16696)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that can be exploited by an attacker to cause non-whitelisted guild members to trigger reactive events and inject reactive text into downstream session environments...

5.4CVSS5.7AI score0.00034EPSS
Exploits0
Redos
Redosadded 2026/04/07 12:0 a.m.2 views

ROS-20260407-73-0041

A vulnerability in the TLS traffic proxying mechanism of NGINX Plus and NGINX OSS web servers is related to the loading of external unreliable data along with reliable data. Exploitation of the vulnerability could allow an attacker acting remotely to inject data in plain text form...

8.2CVSS6.1AI score0.00021EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/03/29 12:0 a.m.3 views

PT-2026-28451

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.11 Description The software contains an authorization bypass issue in how Discord guild reactions are processed. Specifically, the system does not properly verify if a user or role is on an allowlist, allowing...

5.4CVSS5.9AI score0.00034EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/03/29 12:0 a.m.1 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that can be exploited by an attacker to cause non-whitelisted guild members to trigger reactive events and inject reactive text into downstream session environments...

5.4CVSS5.8AI score0.00034EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/03/24 10:39 a.m.7 views

nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

A flaw was found in NGINX. When NGINX is configured to proxy to upstream Transport Layer Security TLS servers, An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data into the response...

8.2CVSS6AI score0.00021EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/21 6:30 a.m.2 views

EUVD-2026-14168

The Logo Slider – Logo Carousel, Logo Showcase & Client Logo Slider Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image alt text in all versions up to, and including, 4.9.0 due to insufficient input sanitization and output escaping in the 'logo-slider' shortcode...

6.4CVSS6AI score0.00043EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/03/02 4:17 p.m.3 views

CVE-2026-28359

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, an authenticated user with Editor role can inject arbitrary HTML into Rich Text cells by bypassing the TipTap editor and sending raw HTML via the API. This issue has been patched in version 0.301.3...

5.4CVSS5.9AI score0.00041EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/02/16 3:57 p.m.0 views

BIT-NGINX-GATEWAY-2026-1642 NGINX vulnerability

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data in...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References3
Ubuntu
Ubuntuadded 2026/02/12 5:55 p.m.8 views

USN-8038-1: nginx vulnerability

It was discovered that nginx incorrectly handled proxying to upstream TLS servers. An attacker could possibly use this issue to insert plain text data into the response from an upstream proxied server...

8.2CVSS5.6AI score0.00021EPSS
Exploits0
OSV
OSVadded 2026/02/10 6:0 p.m.16 views

BIT-NGINX-2026-1642

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data in...

8.2CVSS5.7AI score0.00021EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/02/04 3:2 p.m.8 views

CVE-2026-1642

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data in...

8.2CVSS8.1AI score0.00021EPSS
Exploits0
CVE
CVEadded 2026/02/04 3:2 p.m.386 views

CVE-2026-1642

The CVE-2026-1642 entry describes a vulnerability in NGINX OSS and NGINX Plus when configured to proxy to upstream TLS servers. Under a MITM position on the upstream side and conditions outside the attacker’s control, an attacker may inject plain text data into the response from an upstream proxi...

8.2CVSS5.5AI score0.00021EPSS
Exploits0References2Affected Software5
AlpineLinux
AlpineLinuxadded 2026/02/04 3:2 p.m.13 views

CVE-2026-1642

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data in...

8.2CVSS5.5AI score0.00021EPSS
Exploits0
F5 Networks
F5 Networksadded 2026/02/04 1:40 p.m.17 views

K000159824: NGINX vulnerability CVE-2026-1642

Security Advisory Description A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be abl...

8.2CVSS6.1AI score0.00021EPSS
Exploits0Affected Software5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-22997

Malware in sbrugna...

5.3CVSS5.6AI score0.00664EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-21943

Malware in sbrugna...

4.3CVSS4.8AI score0.004EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2016-5051

Malware in sbrugna...

4.3CVSS4.8AI score0.00216EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2006-0789

Malware in sbrugna...

4.3CVSS6.4AI score0.05656EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-10237

Malware in sbrugna...

4.3CVSS4.8AI score0.00259EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-22013

Malware in sbrugna...

7.5CVSS7.5AI score0.00238EPSS
Exploits0References2
Rows per page
Query Builder