Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

46 matches found

EUVD
EUVDadded 2026/04/08 9:31 a.m.0 views

EUVD-2026-20244

Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through = 0.3.7...

5.9AI score0.0004EPSS
Exploits0References2
NVD
NVDadded 2026/04/08 9:16 a.m.0 views

CVE-2026-39609

Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through = 0.3.7...

5.3CVSS0.0004EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:30 a.m.2 views

CVE-2026-39609

Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through = 0.3.7...

5.9AI score0.0004EPSS
Exploits0References2
CVE
CVEadded 2026/04/08 8:30 a.m.5 views

CVE-2026-39609

Summary: CVE-2026-39609 concerns a missing authorization flaw in the WordPress plugin “Wava Payment” (wava-payment), affecting versions up to and including 0.3.7. The root cause is an incorrectly configured access control that allows exploitation of authorization checks. What’s affected: WordPres...

5.3CVSS5.9AI score0.0004EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.17 views

CVE-2026-39609 WordPress Wava Payment plugin <= 0.3.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Wava.co Wava Payment wava-payment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wava Payment: from n/a through = 0.3.7...

5.3CVSS0.0004EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/04/08 12:0 a.m.1 views

PT-2026-31174

Name of the Vulnerable Software and Affected Versions Wava Payment versions through 0.3.7 Description A missing authorization flaw exists in Wava Payment, potentially allowing exploitation due to incorrectly configured access control security levels. Recommendations Update Wava Payment to a versi...

5.3CVSS5.8AI score0.0004EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/03/26 3:15 p.m.3 views

CVE-2026-4173

A flaw has been found in CodePhiliaX Chat2DB up to 0.3.7. This vulnerability affects the function exportTable/exportTableColumnComment/exportView/exportProcedure/exportTriggers/exportTrigger/updateProcedure of the file DMDBManage.java of the component Database Export Handler. This manipulation...

6.5CVSS6.2AI score0.00039EPSS
Exploits0References1
EUVD
EUVDadded 2026/03/23 3:30 p.m.2 views

EUVD-2026-14423

A vulnerability was found in CodePhiliaX Chat2DB up to 0.3.7. This affects the function Upload of the file chat2db-server/chat2db-server-web/chat2db-server-web-api/src/main/java/ai/chat2db/server/web/api/controller/driver/JdbcDriverController.java of the component JDBC Driver Upload. Performing a...

6.5CVSS5.3AI score0.0005EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/03/23 12:8 p.m.1 views

CVE-2026-4586 CodePhiliaX Chat2DB JDBC Driver Upload JdbcDriverController.java upload unrestricted upload

A vulnerability was found in CodePhiliaX Chat2DB up to 0.3.7. This affects the function Upload of the file chat2db-server/chat2db-server-web/chat2db-server-web-api/src/main/java/ai/chat2db/server/web/api/controller/driver/JdbcDriverController.java of the component JDBC Driver Upload. Performing a...

6.5CVSS5.3AI score0.0005EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/03/23 12:0 a.m.3 views

CodePhiliaX Chat2DB 代码问题漏洞

CodePhiliaX Chat2DB is an open-source AI-driven SQL client developed by CodePhiliaX. Versions of CodePhiliaX Chat2DB 0.3.7 and earlier contain code-related vulnerabilities. These vulnerabilities stem from the unlimited uploading feature of the JDBC Driver Upload component...

6.5CVSS6.7AI score0.0005EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/03/16 12:0 a.m.2 views

CodePhiliaX Chat2DB SQL注入漏洞

CodePhiliaX Chat2DB is an open-source AI-driven SQL client developed by CodePhiliaX. Versions of CodePhiliaX Chat2DB 0.3.7 and earlier contain a SQL injection vulnerability. This vulnerability arises from improper handling of parameters in the functions exportTable, exportTableColumnComment,...

6.5CVSS6.6AI score0.00039EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/03/15 12:0 a.m.1 views

PT-2026-25546

A flaw has been found in CodePhiliaX Chat2DB up to 0.3.7. This vulnerability affects the function exportTable/exportTableColumnComment/exportView/exportProcedure/exportTriggers/exportTrigger/updateProcedure of the file DMDBManage.java of the component Database Export Handler. This manipulation...

6.5CVSS5.5AI score0.00039EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/23 6:31 p.m.3 views

EUVD-2025-35696

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS6.7AI score0.00086EPSS
Exploits1References2
OSV
OSVadded 2025/10/23 4:16 p.m.0 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2025/10/23 4:16 p.m.1 views

DEBIAN-CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.2AI score0.00086EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/10/23 12:0 a.m.10 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

0.00086EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/10/23 12:0 a.m.2 views

PT-2025-43528

Name of the Vulnerable Software and Affected Versions Audiofile version 0.3.7 Description The software contains a NULL pointer dereference within the ModuleState::setup function. This can lead to unexpected behavior or a denial of service. Recommendations Update to a newer version that contains a...

7.5CVSS6.5AI score0.00086EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/23 12:0 a.m.1 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

6.9AI score0.00086EPSS
Exploits1References1
Debian CVE
Debian CVEadded 2025/10/23 12:0 a.m.3 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.2AI score0.00086EPSS
Exploits1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2025-9051

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.00497EPSS
Exploits0References4
Rows per page
Query Builder