Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 5 hours ago3 views

CVE-2026-12143 form-data does not escape CR/LF/quote in multipart field names and filenames (CRLF injection)

form-data is a library for creating readable multipart/form-data streams. In versions through 4.0.5, the field argument to FormDataappend and the filename option are concatenated verbatim into the Content-Disposition header without escaping carriage return CR, line feed LF, or double-quote "...

8.7CVSS5.4AI score
Exploits0References7
CVE
CVEadded 2026/04/27 11:34 p.m.81 views

CVE-2026-40976

CVE-2026-40976 affects Spring Boot 4.0.0–4.0.5. In vulnerable configurations, a servlet-based web application that relies on Spring Boot’s default web security (no custom Spring Security config), depends on spring-boot-actuator-autoconfigure, and does not rely on spring-boot-health can experience...

9.1CVSS5.3AI score0.00023EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.3 views

CVE-2026-5561

A vulnerability was determined in Campcodes Complete POS Management and Inventory System up to 4.0.6. This affects an unknown function of the file app/Http/Controllers/SettingsController.php of the component Environment Variable Handler. Executing a manipulation can lead to injection. It is...

6.5CVSS6.3AI score0.00019EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/16 12:0 a.m.2 views

PT-2025-42549

Name of the Vulnerable Software and Affected Versions Xpdf versions prior to 4.06 Description A flaw exists in Xpdf versions 4.05 and earlier related to PDF object handling within CMap structures. Specifically, a loop in a CMap, triggered through the "UseCMap" entry, can result in infinite...

2.1CVSS6.5AI score0.00009EPSS
Exploits0References11
CNNVD
CNNVDadded 2023/07/11 12:0 a.m.2 views

Issabel PBX 跨站请求伪造漏洞

Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A security vulnerability exists in issabelPBX version v.4.0.0-6, which stems from the presence of a cross-site request forgery CSRF vulnerability that could...

8.1CVSS7.5AI score0.00745EPSS
Exploits2References3
CNNVD
CNNVDadded 2023/07/11 12:0 a.m.2 views

Issabel PBX 跨站请求伪造漏洞

Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A cross-site request forgery vulnerability exists in Issabel PBX version v.4.0.0-6, which originates from a vulnerability that allows remote attackers to caus...

8.1CVSS7.6AI score0.00745EPSS
Exploits2References3
Positive Technologies
Positive Technologiesadded 2023/06/09 12:0 a.m.3 views

PT-2023-17683 · WordPress · Essential Blocks

Name of the Vulnerable Software and Affected Versions: The Essential Blocks plugin for WordPress versions up to, and including, 4.0.6 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the save function. This allows unauthenticated...

4.3CVSS5.3AI score0.00092EPSS
Exploits0References6
CNVD
CNVDadded 2016/04/13 12:0 a.m.1 views

Silicon Graphics LibTiff tiff2bw Tool Denial of Service Vulnerability

Silicon Graphics LibTiff is the United States Silicon Graphics, Inc. of a read and write TIFF Tagged Image File Format file library. A denial of service vulnerability exists in the tifread.c file in the Silicon Graphics LibTiff 4.0.6 and earlier versions of the tiff2bw tool. An attacker can explo...

6.5CVSS9AI score0.00339EPSS
Exploits0References1
Rows per page
Query Builder