Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 4 days ago5 views

CVE-2026-39814

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.1 through 7.4.12, FortiWeb 7.2.7 through 7.2.12, FortiWeb 7.0.10 through 7.0.12 may allow attacker to execute unauthorized code or commands via...

6.7CVSS5.7AI score0.00025EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2026/05/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-27358

The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set...

7.5CVSS7.2AI score0.92396EPSS
In wildExploits0References18
Tenable Nessus
Tenable Nessusadded 2025/10/14 12:0 a.m.4 views

Fortinet FortiManager Insertion of Sensitive Information Into Sent Data in csfd daemon (FG-IR-24-228)

The version of FortiManager installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-228 advisory. - A insertion of sensitive information into sent data in Fortinet FortiManager Cloud 7.4.1 through 7.4.3, FortiVoice 7.0.0...

4.3CVSS5.4AI score0.0001EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/14 3:3 p.m.6 views

CVE-2024-46662

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets...

8.8CVSS8.9AI score0.00304EPSS
Exploits0References1
OSV
OSVadded 2025/01/21 9:15 p.m.0 views

CVE-2025-21554

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...

5.3CVSS7.3AI score
Exploits0References1
OSV
OSVadded 2024/10/07 8:15 p.m.1 views

DEBIAN-CVE-2024-31228

Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST and ACL definitions. Matching of extremel...

6.5CVSS6.1AI score0.01368EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/03/02 12:0 a.m.3 views

Liferay Portal 跨站脚本漏洞

Liferay Portal is a J2EE-based portal solution from Liferay, Inc. The solution uses technologies such as EJB as well as JMS, and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, and so on. A cross-site scripting vulnerability exists in...

6.1CVSS5.8AI score0.00295EPSS
Exploits0References4
Rows per page
Query Builder