Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

547 matches found

NVD
NVDadded 3 days ago4 views

CVE-2026-56066

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS0.00346EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 5 days ago7 views

PT-2026-52136

Name of the Vulnerable Software and Affected Versions Cacti versions prior to 1.2.31 Description Cacti is an open source performance and fault management framework. The software contains an unauthenticated Local File Inclusion LFI issue, which occurs through the graph theme parameter and rrdtool...

9.8CVSS5.8AI score0.00436EPSS
Exploits1References6
EUVD
EUVDadded 2026/06/17 6:35 p.m.7 views

EUVD-2025-210228

Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site = 1.0.7 versions...

10CVSS5.2AI score0.00432EPSS
Exploits0References2
NVD
NVDadded 2026/06/17 2:17 p.m.8 views

CVE-2025-69175

Unauthenticated Local File Inclusion in Line Agency = 1.3.1 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 2:17 p.m.4 views

CVE-2025-69106

Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 1:20 p.m.9 views

CVE-2026-52705

Unauthenticated Arbitrary File Upload in SigmaForms Pro – AI Generated Forms = 1.4.5 versions...

9CVSS0.00294EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 1:20 p.m.7 views

CVE-2026-39582

Unauthenticated Local File Inclusion in Hitek 1.8.3 versions...

8.1CVSS0.00338EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 1:19 p.m.9 views

CVE-2025-69129

Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site = 1.0.7 versions...

10CVSS0.00432EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 1:19 p.m.6 views

CVE-2025-69118

Unauthenticated Local File Inclusion in CopyPress = 1.4.5 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVDadded 2026/06/17 1:19 p.m.5 views

CVE-2025-60085

Unauthenticated Local File Inclusion in Learnify = 1.15.0 versions...

8.1CVSS0.00423EPSS
Exploits0References1
NVD
NVDadded 2026/06/15 9:16 p.m.4 views

CVE-2026-40772

Unauthenticated Arbitrary File Upload in GeekyBot = 1.2.2 versions...

10CVSS0.00347EPSS
Exploits0References1
NVD
NVDadded 2026/06/15 12:16 p.m.12 views

CVE-2026-5482

Responsive FileManager's allows an unauthenticated attacker to upload files of any type and extension without restriction using dialog.php endpoint, leading to Remote Code Execution. This project is unmaintained at the time of CVE assignment. The vulnerability was found in the latest release 9.14...

9.3CVSS0.00445EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/06/13 1:43 p.m.89 views

Exploit for CVE-2026-1555

CVE-2026-1555: Unauthenticated Arbitrary File Upload in WebSta...

9.8CVSS5.3AI score0.00984EPSS
Exploits3
CVE
CVEadded 2026/06/12 1:52 p.m.30 views

CVE-2026-53787

Amasty Order Attributes for Magento 2 (versions

9.8CVSS6.2AI score0.03692EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/12 12:0 a.m.14 views

PT-2026-48882

Name of the Vulnerable Software and Affected Versions Amasty Order Attributes for Magento 2 versions prior to 4.0.0 Description An unauthenticated arbitrary file upload issue allows attackers to write files of any type or name to the store's media directory. This occurs because the upload endpoin...

9.8CVSS6.1AI score0.03692EPSS
Exploits0References8
GithubExploit
GithubExploitadded 2026/06/06 8:37 a.m.53 views

Exploit for CVE-2026-3844

CVE-2026-3844 – Breeze Cache WordPress Plugin Unauthenticated...

9.8CVSS6.1AI score0.36512EPSS
Exploits8
RedhatCVE
RedhatCVEadded 2026/06/05 7:9 p.m.10 views

CVE-2026-35033

Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain an unauthenticated arbitrary file read vulnerability via ffmpeg argument injection through the StreamOptions query parameter parsing mechanism. The ParseStreamOptions method in StreamingHelpers.cs adds any...

9.3CVSS5.5AI score0.00319EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/06/05 8:58 a.m.12 views

WordPress Ad Manager Wd plugin <= 1.0.11 - Unauthenticated Arbitrary File Download vulnerability

Unauthenticated Arbitrary File Download vulnerability discovered by ? in WordPress Plugin Ad Manager Wd versions = 1.0.11...

9.8CVSS5.4AI score0.0046EPSS
Exploits0References1Affected Software1
GithubExploit
GithubExploitadded 2026/06/03 1:18 p.m.105 views

Exploit for Improper Access Control in Proftpd

OpenVAS-Vulnerability-Analysis-Incident-Response-Report Real-W...

10CVSS6.2AI score0.96803EPSS
Exploits21
GithubExploit
GithubExploitadded 2026/05/31 9:45 a.m.84 views

Exploit for CVE-2026-3891

███████╗██████╗ ██╗███████╗███╗ ██╗██████╗ ███████╗ ██╔═...

9.8CVSS6.1AI score0.00845EPSS
Exploits5
Rows per page
Query Builder