Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2 days ago5 views

CVE-2026-42680 WordPress Contest Gallery Pro plugin <= 29.0.1 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery Pro allows Privilege Escalation. This issue affects Contest Gallery Pro: from n/a through 29.0.1...

9.8CVSS5.8AI score0.00041EPSS
Exploits0References1
CVE
CVEadded 2 days ago12 views

CVE-2026-42680

CVE-2026-42680 : Affected product is the WordPress plugin Contest Gallery Pro up to version 29.0.1. The vulnerability is an Incorrect Privilege Assignment that allows privilege escalation. The CVSS 3.1 base score is 9.8 (CRITICAL) with attack vector NETWORK, no user interaction, and requires no p...

9.8CVSS5.8AI score0.00041EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2 days ago5 views

CVE-2026-42680

Incorrect Privilege Assignment vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery Pro allows Privilege Escalation. This issue affects Contest Gallery Pro: from n/a through 29.0.1...

9.8CVSS5.8AI score0.00041EPSS
Exploits0References2
Patchstack
Patchstackadded 2026/05/17 11:15 a.m.3 views

WordPress Contest Gallery Pro plugin <= 29.0.1 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by daroo in WordPress Plugin Contest Gallery Pro versions = 29.0.1...

9.8CVSS5.8AI score0.00041EPSS
Exploits0Affected Software1
CNNVD
CNNVDadded 2025/05/08 12:0 a.m.1 views

OpenStack Ironic 安全漏洞

OpenStack Ironic is an integrated OpenStack program open-sourced by OpenStack. It is used to configure bare metal rather than virtual machines. A security vulnerability exists in OpenStack Ironic versions prior to 29.0.1, which stems from an unexpected file that may be written to the target node...

2.8CVSS5.4AI score0.00061EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2025/05/08 12:0 a.m.8 views

CVE-2025-44021

OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during image handling if a deployment was performed via the API. A malicious project assigned as a node owner can provide a path to any local file readable by ironic-conductor, which may then be written to the target...

2.8CVSS5.6AI score0.00061EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2024/09/17 9:30 p.m.2 views

io.nstream:nstream-adapter-druid (>=4.8.15 <=4.15.23) potentially affected by CVE-2024-45537 via org.apache.druid:druid (=29.0.1)

org.apache.druid:druid MAVEN version =29.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.druid:druid and may be impacted: - io.nstream:nstream-adapter-druid =4.8.15, =4.15.23 Source cves: CVE-2024-45537 Source advisory:...

6.5CVSS5.8AI score0.00323EPSS
Exploits1
Rows per page
Query Builder