Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 4 days ago6 views

CVE-2026-41004

When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain text in the logs. Spring Cloud Config 3.1.x: affected from 3.1.0 through 3.1.13 inclusive; upgrade to 3.1.14 or greater Enterprise Support Only. Spring Cloud Config 4.1.x: affected from 4.1.0 throu...

4.4CVSS5.4AI score0.00007EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/18 12:0 a.m.3 views

Custom certificate activity 安全漏洞

Custom Certificate Activity is a dynamically generated and customizable PDF certificate plugin developed by Mark Nelson as an individual developer. Versions of Custom Certificate Activity prior to 4.4.9 and 5.0.3 contained security vulnerabilities. These vulnerabilities stemmed from the...

9.6CVSS5.8AI score0.00023EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/01/07 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000169)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000169 advisory. In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django.utils.text.Truncator.words method with html=True and the truncatewordshtml template...

7.5CVSS6.6AI score0.0297EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/12/21 12:0 a.m.3 views

PT-2025-52571

Name of the Vulnerable Software and Affected Versions PostX plugin for WordPress versions up to and including 5.0.3 Description The PostX plugin for WordPress is affected by a flaw that allows unauthorized access to data. A missing capability check on the /ultp/v2/get dynamic content/ REST API...

7.5CVSS6.1AI score0.00136EPSS
Exploits0References9
OSV
OSVadded 2025/06/08 12:15 p.m.1 views

CVE-2025-21082

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause apps crash through type confusion...

5.5CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/31 9:5 a.m.5 views

CVE-2025-30961 WordPress Trackserver plugin <= 5.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tinuzz Trackserver trackserver allows DOM-Based XSS.This issue affects Trackserver: from n/a through = 5.1.0...

6.5CVSS7.3AI score0.00204EPSS
Exploits0References1
OSV
OSVadded 2024/01/08 10:15 p.m.2 views

CVE-2022-36352

Missing Authorization vulnerability in Profilegrid ProfileGrid – User Profiles, Memberships, Groups and Communities.This issue affects ProfileGrid – User Profiles, Memberships, Groups and Communities: from n/a through 5.0.3...

8.8CVSS5.8AI score0.00242EPSS
Exploits0References1
OSV
OSVadded 2020/10/10 7:15 p.m.1 views

UBUNTU-CVE-2020-26935

An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query...

9.8CVSS7.3AI score0.89641EPSS
Exploits1References6
Rows per page
Query Builder