Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/05/06 2:21 p.m.7 views

CVE-2026-42220

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, an authenticated user can call GET /api/settings and retrieve sensitive configuration values, including node.secret. The same node.secret is accepted by AuthRequired through the X-Node-Secret header or nodesecret...

6.5CVSS5.7AI score0.00038EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/05/05 12:0 a.m.4 views

PT-2026-37359

Diesel uses the sqlite3 value text function to receive strings from SQLite while deserializing query results. We misinterpreted the corresponding SQLite documentation that this function always returns a UTF-8 encoded string values as const c char. Based on that we used str::from utf8 unchecked to...

8.7CVSS6.1AI score
Exploits0References4
Circl
Circladded 2026/01/19 7:42 p.m.2 views

CVE-2026-23840

creationtimestamp| type| source ---|---|--- 2026-01-19 19:42:12+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcsfllxkv62w 2026-01-19 19:42:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcsfmapvdc2n 2026-01-19 22:03:07+00:00| seen|...

9.3CVSS4.8AI score0.00151EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/10/28 2:38 a.m.2 views

CVE-2025-62946

Missing Authorization vulnerability in everestthemes Everest Backup everest-backup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Everest Backup: from n/a through = 2.3.8...

5.3CVSS7AI score0.00063EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/16 8:41 p.m.1 views

EUVD-2025-34814

bagisto has a Cross Site Scripting XSS vulnerability in TinyMCE Image Upload SVG...

6.9CVSS5.5AI score0.00036EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/10/16 6:33 p.m.6 views

CVE-2025-62414 bagisto - Cross Site Scripting (XSS) in Create New Customer

Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3.7, the “Create New Customer” feature in the admin panel is vulnerable to Cross-Site Scripting XSS. An attacker with access to the admin create-customer form can inject malicious JavaScript payloads into certain input fields...

6.9CVSS0.00036EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-26219

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00043EPSS
Exploits2References3
Circl
Circladded 2022/09/16 10:35 p.m.1 views

CVE-2022-38992

creationtimestamp| type| source ---|---|--- 2022-09-16 22:35:05+00:00| seen| https://t.me/cibsecurity/49965...

7.5CVSS7.3AI score0.00131EPSS
Exploits0References1
Circl
Circladded 2022/08/11 12:26 a.m.22 views

CVE-2022-38130

creationtimestamp| type| source ---|---|--- 2022-08-11 00:26:35+00:00| seen| https://t.me/cibsecurity/47904 2024-11-16 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-16 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities -...

9.8CVSS8.7AI score0.78409EPSS
In wildExploits0References2
OSV
OSVadded 2021/09/09 1:22 p.m.6 views

SUSE-SU-2021:3008-1 Security update for mariadb

This update for mariadb fixes the following issues: Update to version 10.2.40 bsc1189320: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389...

7.1CVSS5.8AI score0.00552EPSS
Exploits0References5
OSV
OSVadded 2017/04/24 7:59 p.m.2 views

CVE-2017-3582

Vulnerability in the Oracle SuperCluster Specific Software component of Oracle Sun Systems Products Suite subcomponent: Backup/Restore Utility. Supported versions that are affected are 2.3.8 and 2.3.13. Easily "exploitable" vulnerability allows unauthenticated attacker with logon to the...

8.4CVSS5.8AI score0.00198EPSS
Exploits0References3
Rows per page
Query Builder