Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

NVD
NVDadded 2026/04/08 7:24 p.m.2 views

CVE-2025-50657

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint...

7.5CVSS0.00054EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/08 12:0 a.m.15 views

CVE-2025-50657

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint...

0.00054EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/04/08 12:0 a.m.3 views

D-Link DI-8003 安全漏洞

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from improper handling of the pid parameter in the /trace.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00054EPSS
Exploits0References3
CVE
CVEadded 2026/04/08 12:0 a.m.5 views

CVE-2025-50657

The CVE-2025-50657 entry concerns D-Link DI-8003 router firmware (16.07.26A1). The concrete issue is a buffer overflow caused by improper handling of the pid parameter in the /trace.asp endpoint. Descriptions across CNVD, RH, EUVD, NVD and CVE records consistently indicate this vulnerability can ...

7.5CVSS6.2AI score0.00054EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/08 12:0 a.m.2 views

CVE-2025-50657

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint...

6AI score0.00054EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/03/07 1:43 a.m.2 views

CVE-2026-28462

OpenClaw versions prior to 2026.2.13 contain a vulnerability in the browser control API in which it accepts user-supplied output paths for trace and download files without consistently constraining writes to temporary directories. Attackers with API access can exploit path traversal in POST...

9.1CVSS5.8AI score0.00069EPSS
Exploits0References1
NVD
NVDadded 2026/03/05 10:16 p.m.1 views

CVE-2026-28462

OpenClaw versions prior to 2026.2.13 contain a vulnerability in the browser control API in which it accepts user-supplied output paths for trace and download files without consistently constraining writes to temporary directories. Attackers with API access can exploit path traversal in POST...

9.1CVSS0.00069EPSS
Exploits0References3
OSV
OSVadded 2026/02/18 5:38 p.m.2 views

GHSA-GQ9C-WG68-GWJ2 OpenClaw has a path traversal in browser trace/download output paths may allow arbitrary file writes

Summary OpenClaw’s browser control API accepted user-supplied output paths for trace/download files without consistently constraining writes to OpenClaw-managed temporary directories. Impact If an attacker can access the browser control API, they could attempt to write trace/download output files...

8.7CVSS5.6AI score0.00069EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/02/18 12:0 a.m.1 views

PT-2026-23537

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.13 Description The browser control API in OpenClaw accepts user-supplied output paths for trace and download files without consistently constraining writes to temporary directories. Attackers with API access c...

8.7CVSS5.8AI score0.00069EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/11/27 12:58 a.m.2 views

CVE-2025-65239

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

4.3CVSS6.8AI score0.00036EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/26 6:31 p.m.3 views

EUVD-2025-199725

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

4.3CVSS6.3AI score0.00036EPSS
Exploits1References4
OSV
OSVadded 2025/11/26 5:15 p.m.2 views

CVE-2025-65239

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

4.3CVSS5.8AI score0.00036EPSS
Exploits1References3
NVD
NVDadded 2025/11/26 5:15 p.m.1 views

CVE-2025-65239

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

4.3CVSS0.00036EPSS
Exploits1References3
CNNVD
CNNVDadded 2025/11/26 12:0 a.m.1 views

OpenCode USSD Gateway 安全漏洞

OpenCode USSD Gateway is an OpenCode open source gateway software for processing and managing USSD messages. A security vulnerability exists in OpenCode USSD Gateway, which stems from improper access control of the /aux1/ocussd/trace endpoint, which could allow a low-privileged attacker to read...

4.3CVSS6.6AI score0.00036EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/11/26 12:0 a.m.4 views

CVE-2025-65239

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

0.00036EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/11/26 12:0 a.m.2 views

PT-2025-48155

Name of the Vulnerable Software and Affected Versions OpenCode Systems USSD Gateway OC Release:5 version 6.13.11 Description A flaw exists in access control within the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5. This allows attackers with limited privileges to acces...

4.3CVSS6.5AI score0.00036EPSS
Exploits1References8
CVE
CVEadded 2025/11/26 12:0 a.m.5 views

CVE-2025-65239

CVE-2025-65239 affects OpenCode Systems USSD Gateway OC Release:5 (version 6.13.11). The /aux1/ocussd/trace endpoint has incorrect access control, enabling attackers with low privileges to read server logs. Reported CVSSv3.1 base score is 4.3 (MEDIUM), with network access, low privileges required...

4.3CVSS6.4AI score0.00036EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/26 12:0 a.m.1 views

CVE-2025-65239

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs...

6.4AI score0.00036EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/10/30 10:9 p.m.2 views

CVE-2025-54459

Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing endpoint /trace.axd without authentication, allowing a remote attacker to obtain live request traces and sensitive information such as request metadata, session identifiers, authorization headers, serve...

8.7CVSS6.7AI score0.00145EPSS
Exploits0References1
NVD
NVDadded 2025/10/29 10:15 p.m.3 views

CVE-2025-54459

Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing endpoint /trace.axd without authentication, allowing a remote attacker to obtain live request traces and sensitive information such as request metadata, session identifiers, authorization headers, serve...

8.7CVSS0.00145EPSS
Exploits0References1
Rows per page
Query Builder