Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded yesterday4 views

CVE-2026-11511

A weakness has been identified in Bolt CMS up to 3.7.5. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead to HTML injection. It is possible to launch the attack...

5.1CVSS5.3AI score0.00028EPSS
Exploits0References1
NVD
NVDadded 2026/05/29 4:16 p.m.9 views

CVE-2026-10068

A flaw has been found in Shibby Tomato 1.28. The affected element is the function send of the file usr/sbin/miniupnpd of the component SUBSCRIBE Call Handler. This manipulation causes server-side request forgery. The attack may be initiated remotely. This project is superseded by FreshTomato. Thi...

7.5CVSS0.0005EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/02/09 6:2 a.m.29 views

CVE-2026-2218 D-Link DCS-933L alphapd setSystemAdmin command injection

A vulnerability was determined in D-Link DCS-933L up to 1.14.11. This affects an unknown function of the file /setSystemAdmin of the component alphapd. This manipulation of the argument AdminID causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

6.5CVSS0.0007EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2026/02/07 12:0 a.m.5 views

PT-2026-6920

Name of the Vulnerable Software and Affected Versions yuan1994 tpadmin versions up to 1.3.12 Description A security issue exists in yuan1994 tpadmin up to version 1.3.12. The issue is related to deserialization within the WebUploader component, specifically in the file...

7.5CVSS5.3AI score0.0003EPSS
Exploits3References8
Cvelist
Cvelistadded 2025/09/01 9:32 a.m.8 views

CVE-2025-9772 RemoteClinic edit.php unrestricted upload

A vulnerability was detected in RemoteClinic up to 2.0. This affects an unknown part of the file /staff/edit.php. Performing manipulation of the argument image results in unrestricted upload. The attack can be initiated remotely. The exploit is now public and may be used. This vulnerability only...

7.5CVSS0.00119EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2025/08/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-45193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria does not ensure that S n. Th...

4.3CVSS5.8AI score0.00077EPSS
Exploits1References3
OSV
OSVadded 2025/08/05 5:15 p.m.3 views

CVE-2025-8585

A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...

4.8CVSS6.6AI score
Exploits0References5
NVD
NVDadded 2023/01/23 3:15 p.m.9 views

CVE-2023-24099

TrendNet Wireless AC Easy-Upgrader TEW-820AP v1.0R, firmware version 1.01.B01 was discovered to contain a stack overflow via the username parameter at /formWizardPassword. This vulnerability allows attackers to execute arbitrary code via a crafted payload. NOTE: This vulnerability only affects...

8.8CVSS9AI score0.01026EPSS
Exploits1References1
OSV
OSVadded 2022/12/10 12:15 p.m.2 views

DEBIAN-CVE-2022-4396

A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e...

5.4CVSS3.7AI score0.00447EPSS
Exploits0References1
Rows per page
Query Builder