Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2026/05/21 11:49 a.m.3 views

CVE-2026-6841 Reflected XSS in Request Tracker

Request Tracker is vulnerable to a reflected cross-site scripting XSS vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser. This vulnerability affects versions from 5.0.4 up to 5.0....

5.1CVSS5.9AI score0.00038EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/07 3:0 a.m.30 views

CVE-2026-41671 Admidio: OIDC Token Introspection Endpoint Returns Active for All Tokens Without Validation

Admidio is an open-source user management solution. Prior to version 5.0.9, the OIDC token introspection endpoint /modules/sso/index.php/oidc/introspect always returns "active": true for every request, regardless of whether a valid token is provided, whether the token is expired, revoked, or...

6.8CVSS0.0002EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/02/11 2:54 p.m.126 views

poc-ghsa-37qj-frw5-hhjh

PoC: GHSA-37qj-frw5-hhjh — fast-xml-...

5.4AI score
Exploits0
CVE
CVEadded 2026/01/16 12:0 a.m.16 views

CVE-2025-61873

Summary: CVE-2025-61873 affects Best Practical Request Tracker (RT). The connected Debian advisory confirms the issue is a CSV injection vulnerability in RT exports to TSV from search results, caused by ticket values containing certain characters and exported in TSV, enabling injection. Debian li...

2.6CVSS6.6AI score0.00006EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/09/09 12:0 a.m.1 views

WordPress plugin Church Admin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

4.3CVSS8.1AI score0.00058EPSS
Exploits0References1
OSV
OSVadded 2024/12/09 2:15 a.m.1 views

DEBIAN-CVE-2024-55565

nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version...

4.3CVSS6.1AI score0.00107EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2024/12/09 12:0 a.m.11 views

CVE-2024-55565

nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version...

4.3CVSS6.1AI score0.00107EPSS
Exploits0
CNNVD
CNNVDadded 2024/10/08 12:0 a.m.1 views

Django 安全漏洞

Django is a set of open source web application frameworks based on the Python language from the Django Foundation. The framework includes an object-oriented mapper, view system, template system, and more. A security vulnerability exists in Django versions v5.1.1, v5.0.9 and v4.2.16. An attacker...

5.3CVSS5AI score0.00235EPSS
Exploits0References5
Patchstack
Patchstackadded 2024/05/30 8:27 a.m.2 views

WordPress Ninja Tables plugin <= 5.0.9 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Yuchen Ji Patchstack Alliance in WordPress Plugin Ninja Tables versions = 5.0.9...

4.9CVSS7AI score0.00212EPSS
Exploits0Affected Software1
Rows per page
Query Builder