Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/15 12:30 p.m.24 views

CVE-2026-25219 Apache Airflow: Sensitive Azure Service Bus connection string (and possibly other providers) exposed to users with view access

The accesskey and connectionstring connection properties were not marked as sensitive names in secrets masker. This means that user with read permission could see the values in Connection UI, as well as when Connection was accidentaly logged to logs, those values could be seen in the logs. Azure...

0.00032EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/09 11:12 a.m.3 views

CVE-2025-57735

When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case it was intercepted. In Airflow 3.2 we implemented the mechanism that implements token invalidation at logout. Users who are concerned about the logout scenario...

9.1CVSS5.8AI score0.0003EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/23 7:25 a.m.4 views

CVE-2024-0491

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

7.5CVSS7.7AI score0.00052EPSS
Exploits0References1
Snyk
Snykadded 2024/10/15 11:35 p.m.1 views

Regular Expression Denial of Service (ReDoS)

Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS through the blockformat helper. An attacker can craft specific input that triggers inefficient regular expression evaluation, causing the application to consume excessive resources and...

8.7CVSS6.7AI score0.00317EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/01/13 12:0 a.m.2 views

PT-2024-15608 · Unknown · Huaxia Erp

Name of the Vulnerable Software and Affected Versions: Huaxia ERP versions up to 3.1 Description: A problematic issue has been found in Huaxia ERP, affecting an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. This issue leads to weak password recovery and ca...

7.5CVSS5.6AI score0.00052EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2024/01/13 12:0 a.m.1 views

PT-2024-15607 · Unknown · Huaxia Erp

Name of the Vulnerable Software and Affected Versions: Huaxia ERP versions up to 3.1 Description: A problematic issue affects some unknown processing of the file /user/getAllList, leading to information disclosure. The attack may be initiated remotely. Recommendations: For Huaxia ERP versions up ...

7.5CVSS5.4AI score0.00087EPSS
Exploits0References6
securityvulns
securityvulnsadded 2012/07/23 12:0 a.m.89 views

WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities

Advisory: WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities Advisory ID: SSCHADV2012-015 Author: Stefan Schurtz Affected Software: Successfully tested on 'Count Per Day' 3.1.1 Vendor URL: http://www.tomsdimension.de/wp-plugins/count-per-day Vendor Status: fixed...

5.8AI score
Exploits0
Rows per page
Query Builder