Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Patchstack
Patchstackadded 2026/01/07 12:58 p.m.3 views

WordPress Moody theme <= 2.7.3 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Moody versions = 2.7.3...

9.8CVSS7.1AI score0.00035EPSS
Exploits0Affected Software1
CNNVD
CNNVDadded 2025/11/28 12:0 a.m.5 views

libexpat 安全漏洞

libexpat is a streaming XML parser written in C by the libexpat team. A security vulnerability exists in libexpat 2.7.3 and earlier versions, which stems from specially crafted files that may result in excessive processing times...

5.5CVSS6.5AI score0.0001EPSS
Exploits0References1
OSV
OSVadded 2025/09/17 5:3 p.m.1 views

GO-2025-3949 Chaos Controller Manager is vulnerable to OS command injection in github.com/chaos-mesh/chaos-mesh

Chaos Controller Manager is vulnerable to OS command injection in github.com/chaos-mesh/chaos-mesh. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...

9.8CVSS7.6AI score0.01522EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/05/14 12:0 a.m.3 views

PT-2025-21241 · Jenkins · Jenkins Dingtalk Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins DingTalk Plugin versions 2.7.3 and earlier Description: The issue concerns the unconditional disabling of SSL/TLS certificate and hostname validation for connections to the configured DingTalk webhooks. This affects the security of th...

5.9CVSS6.2AI score0.00169EPSS
Exploits0References10
OSV
OSVadded 2024/11/01 3:15 p.m.0 views

CVE-2024-43142

Missing Authorization vulnerability in Themeum Tutor LMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tutor LMS: from n/a through 2.7.3...

8.8CVSS5.8AI score
Exploits0References1
Patchstack
Patchstackadded 2024/08/07 11:30 a.m.5 views

WordPress Tutor LMS plugin <= 2.7.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by justakazh Patchstack Alliance in WordPress Plugin Tutor LMS versions = 2.7.3...

8.8CVSS7AI score0.00249EPSS
Exploits0Affected Software1
OSV
OSVadded 2023/11/03 1:15 p.m.0 views

CVE-2022-45805

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Paytm Paytm Payment Gateway paytm-payments allows SQL Injection.This issue affects Paytm Payment Gateway: from n/a through 2.7.3...

9.8CVSS5.8AI score0.03031EPSS
Exploits0References1
NCSC
NCSCadded 2023/04/25 12:0 a.m.4 views

Vulnerability fixed in Rancher

A vulnerability has been fixed in Rancher. The vulnerability is located in the update mechanism. Systems that used the internal update mechanism used to upgrade from versions 2.6.x and 2.7.x upgrade to 2.7.2 are vulnerable. Systems initially installed on version 2.7.2 are not vulnerable. Due to a...

9.9CVSS7.2AI score0.00366EPSS
Exploits0
CNVD
CNVDadded 2022/02/22 12:0 a.m.10 views

Alluxio has an unspecified vulnerability

Alluxio is Alluxio's to improve the speed of end-to-end distributed machine learning in the cloud. a security vulnerability exists in versions prior to Alluxio 2.7.3, which stems from the failure of the log server to validate input streams. No details of the vulnerability are currently available...

9.8CVSS3.8AI score0.00504EPSS
Exploits338References1
Rows per page
Query Builder