Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-37543

Malicious code in bioql PyPI...

7.6CVSS6.6AI score0.05316EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-17467

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00829EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/06/11 1:21 p.m.4 views

CVE-2025-49131

FastGPT is an open-source project that provides a platform for building, deploying, and operating AI-driven workflows and conversational agents. The Sandbox container fastgpt-sandbox is a specialized, isolated environment used by FastGPT to safely execute user-submitted or dynamically generated...

6.3CVSS6.6AI score0.00829EPSS
Exploits1References1
OSV
OSVadded 2024/07/22 11:15 a.m.1 views

CVE-2024-38692

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.11...

7.2CVSS5.8AI score
Exploits0References1
Patchstack
Patchstackadded 2024/07/10 12:0 a.m.10 views

WordPress Spiffy Calendar Plugin <= 4.9.11 is vulnerable to SQL Injection

Software Spiffy Calendar Type Plugin Vulnerable versions = 4.9.11 Fixed in 4.9.12 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-38692 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 21e2115ebd60 Credits Nguyễn Trung Kiên anhchangmutrang Required...

7.6CVSS6.9AI score0.05316EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2023/02/13 6:15 a.m.17 views

CVE-2023-25727

In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and-drop interface...

5.4CVSS5.1AI score
Exploits0References2
OSV
OSVadded 2023/02/13 6:15 a.m.2 views

DEBIAN-CVE-2023-25727

In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and-drop interface...

5.4CVSS5.4AI score0.09658EPSS
Exploits0References1
NVD
NVDadded 2021/09/21 9:15 p.m.14 views

CVE-2021-41086

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...

8.7CVSS0.00638EPSS
Exploits0References3
Cvelist
Cvelistadded 2021/09/21 9:0 p.m.12 views

CVE-2021-41086 Clipboard-based XSS in jsuites

jsuites is an open source collection of common required javascript web components. In affected versions users are subject to cross site scripting XSS attacks via clipboard content. jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting...

8.7CVSS8.2AI score0.00638EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2017/02/17 12:0 a.m.3 views

PT-2017-2357 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.9.11 Description: The issue is related to the dccp rcv state process function in the Linux kernel, which mishandles DCCP PKT REQUEST packet data structures in the LISTEN state. This can be exploited by a local...

10CVSS7.1AI score0.87EPSS
Exploits87References921
Rows per page
Query Builder