Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1065 matches found

OSV
OSVadded 2019/09/25 12:0 a.m.21 views

DSA-4532-1 spip - security update

Bulletin has no description...

6.5CVSS5.8AI score0.07538EPSS
Exploits2
Patchstack
Patchstackadded 2019/09/24 12:0 a.m.13 views

WordPress Zoner - Real Estate premium theme <= 4.1.1 - Persistent Cross-Site Scripting (XSS) vulnerability

Persistent Cross-Site Scripting XSS vulnerability found by Vlad Vector Ex.Mi in WordPress Zoner - Real Estate premium theme versions = 4.1.1. Solution Update the WordPress Zoner - Real Estate premium theme to the latest available version at least 4.2...

2AI score
Exploits0References2Affected Software1
OSV
OSVadded 2019/09/19 12:36 p.m.2 views

OPENSUSE-SU-2019:2154-1 Security update for opera

This update for opera fixes the following issues: Opera was updated to version 63.0.3368.88: - DNA-79103 Saving link to bookmarks saves it to Other bookmarks folder - DNA-79455 Crash at views::MenuController:: FindNextSelectableMenuItemviews::MenuItemView, int, views::...

7.2AI score
Exploits0References1
Github Security Blog
Github Security Blogadded 2019/09/17 11:21 p.m.23 views

Symlink Arbitrary File Overwrite in bower

Versions of bower prior to 1.8.8 are affected by an arbitrary file write vulnerability. The vulnerability occurs because bower does not verify that extracted symbolic links do not resolve to targets outside of the extraction root directory. Recommendation Update to version 1.8.8 or later...

7.5CVSS4.8AI score0.02566EPSS
Exploits1References9Affected Software1
OSV
OSVadded 2019/09/15 12:0 a.m.31 views

DSA-4522-1 faad2 - security update

Bulletin has no description...

7.8CVSS6.6AI score0.01518EPSS
Exploits13
OSV
OSVadded 2019/09/02 6:18 p.m.3 views

OPENSUSE-SU-2019:2058-1 Security update for apache-commons-beanutils

This update for apache-commons-beanutils fixes the following issues: Security issue fixed: - CVE-2019-10086: Added special BeanIntrospector class which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects bsc1146657. This...

7.5CVSS7.4AI score0.28839EPSS
Exploits1References3
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2019/09/02 12:0 a.m.197 views

JVN#93833849: Panasonic Video Insight VMS vulnerable to SQL injection

Video Insight VMS provided by Panasonic Corporation is a video management suite for video security system. Vide Insight VMS contains a SQL injection vulnerability CWE-89. Impact A logged in user may execute an arbitrary SQL statement to the database. Solution Update the software Update the softwa...

8.8CVSS9AI score0.01522EPSS
Exploits0
OSV
OSVadded 2019/09/02 12:0 a.m.42 views

DSA-4512-1 qemu - security update

Bulletin has no description...

8.8CVSS7.3AI score0.16658EPSS
Exploits3
OSV
OSVadded 2019/08/21 2:18 p.m.1 views

OPENSUSE-SU-2019:1985-1 Recommended update for putty

This update for putty fixes the following issues: Update to new upstream release 0.72 boo1144547, boo1144548 Fixed two separate vulnerabilities affecting the obsolete SSH-1 protocol, both available before host key checking. Fixed a vulnerability in all the SSH client tools PuTTY, Plink, PSFTP and...

7.2AI score
Exploits0References3
OSV
OSVadded 2019/08/15 9:0 a.m.2 views

OPENSUSE-SU-2019:1902-1 Security update for chromium

This update for chromium to verion 76.0.3809.100 fixes the following issues: - CVE-2019-5868: Use-after-free in PDFium ExecuteFieldAction boo1145242 - CVE-2019-5867: Out-of-bounds read in V8 boo1145242...

6.5CVSS6AI score0.00698EPSS
Exploits0References4
OSV
OSVadded 2019/08/14 10:51 a.m.8 views

OPENSUSE-SU-2019:1883-1 Security update for libsass

This update for libsass to version 3.6.1 fixes the following issues: Security issues fixed: - CVE-2019-6283: Fixed heap-buffer-overflow in Sass::Prelexer::parenthesescopechar const boo1121943. - CVE-2019-6284: Fixed heap-based buffer over-read exists in Sass:Prelexer:alternatives boo1121944. -...

9.8CVSS7.1AI score0.04006EPSS
Exploits9References25
OSV
OSVadded 2019/08/13 9:49 a.m.6 views

OPENSUSE-SU-2019:1853-1 Security update for chromium

This update for chromium to version 76.0.3809.87 fixes the following issues: - CVE-2019-5850: Use-after-free in offline page fetcher boo1143492 - CVE-2019-5860: Use-after-free in PDFium boo1143492 - CVE-2019-5853: Memory corruption in regexp length check boo1143492 - CVE-2019-5851: Use-after-pois...

9.6CVSS6.9AI score0.01076EPSS
Exploits0References19
OSV
OSVadded 2019/08/10 12:0 a.m.17 views

DLA-1876-1 gosa - security update

Bulletin has no description...

9.8CVSS9.4AI score0.01749EPSS
Exploits0
OSV
OSVadded 2019/07/22 12:0 a.m.34 views

DLA-1861-1 libsdl2-image - security update

Bulletin has no description...

8.8CVSS7.8AI score0.04515EPSS
Exploits11
OSV
OSVadded 2019/07/21 12:0 a.m.46 views

DSA-4486-1 openjdk-11 - security update

Bulletin has no description...

5.8CVSS5.8AI score0.04472EPSS
Exploits0
OSV
OSVadded 2019/07/20 6:25 a.m.4 views

OPENSUSE-SU-2019:1753-1 Security update for libvirt

This update for libvirt fixes the following issues: Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd...

8.8CVSS8.3AI score0.00549EPSS
Exploits0References9
OSV
OSVadded 2019/07/18 2:26 p.m.9 views

SUSE-SU-2019:1896-1 Security update for libxml2

This update for libxml2 fixes the following issues: Issue fixed: - Fixed a bug related to the fix for CVE-2016-9318 which allowed xsltproc to access the internet even when --nonet was given and also was making docbook-xsl-stylesheets to have incomplete xml catalog file bsc1010675, bsc1126613 and...

5.5CVSS6.9AI score0.02938EPSS
Exploits1References5
Patchstack
Patchstackadded 2019/07/10 12:0 a.m.17 views

WordPress Zoho SalesIQ plugin <= 1.0.8 - Cross-Site Request Forgery (CSRF) and Cross-Site Scripting (XSS) vulnerabilities

Cross-Site Request Forgery CSRF and Cross-Site Scripting XSS vulnerabilities found by Cryptography Laboratory in WordPress Zoho SalesIQ plugin versions = 1.0.8. Solution Update the WordPress Zoho SalesIQ plugin to the latest available version at least 1.0.9...

2.1AI score
Exploits0References1Affected Software1
OSV
OSVadded 2019/07/01 12:0 a.m.40 views

DSA-4475-1 openssl - security update

Bulletin has no description...

7.4CVSS6AI score0.05701EPSS
Exploits0
Friends Of PHP
Friends Of PHPadded 2019/06/25 12:0 a.m.12 views

PRODSECBUG-2370: Reflected cross-site scripting on customer cart page

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

6.1CVSS7.2AI score0.01042EPSS
Exploits0Affected Software1
Rows per page
Query Builder