Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNNVD
CNNVDadded 2026/03/16 12:0 a.m.3 views

ZKTeco ZKBioSecurity 安全漏洞

ZKTeco ZKBioSecurity is a web-based integrated platform developed by ZKTeco in China. Version 3.0 of ZKTeco ZKBioSecurity contains a security vulnerability. This vulnerability stems from improper handling of file paths, which may allow attackers to access arbitrary files by modifying file paths...

6.9CVSS5.9AI score0.00012EPSS
Exploits1References6
EUVD
EUVDadded 2025/12/02 12:37 a.m.2 views

EUVD-2025-200106

Grav Exposes Password Hashes Leading to privilege escalation...

6.2CVSS6.6AI score0.00071EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-55485

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00433EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/09/25 2:53 a.m.2 views

CVE-2024-6429

A content spoofing vulnerability exists in multiple WSO2 products due to improper error message handling. Under certain conditions, error messages are passed through URL parameters without validation, allowing malicious actors to inject arbitrary content into the UI. By exploiting this...

4.3CVSS7AI score0.00034EPSS
Exploits0References1
NCSC
NCSCadded 2024/05/15 12:0 a.m.2 views

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution Administrator/Root rights Remote...

8.8CVSS9.1AI score0.50931EPSS
Exploits4
NVD
NVDadded 2023/04/14 5:15 a.m.9 views

CVE-2023-26123

Versions of the package raysan5/raylib before 4.5.0 are vulnerable to Cross-site Scripting XSS such that the SetClipboardText API does not properly escape the ' character, allowing attacker-controlled input to break out of the string and execute arbitrary JavaScript via emscriptenrunscript...

6.1CVSS6.2AI score0.00275EPSS
Exploits1References4
CNNVD
CNNVDadded 2021/11/02 12:0 a.m.1 views

vaadin 跨站脚本漏洞

vaadin vaadin is an open source platform for web application development from Finnish company vaadin. the vaadin platform consists of a set of web components, a Java web framework, and a set of tools and application launchers. the vaadin platform includes a set of web components, a Java web...

6.1CVSS6.1AI score0.00304EPSS
Exploits1References3
CNVD
CNVDadded 2019/10/15 12:0 a.m.0 views

cPanel Authorization Issues Vulnerability (CNVD-2019-36126)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An authorization issue vulnerability exists in cPanel. Detailed vulnerability details are not available at this time...

3.3CVSS6.8AI score0.0005EPSS
Exploits0References1
Krebs on Security
Krebs on Securityadded 2018/08/28 1:27 p.m.25 views

Fiserv Flaw Exposed Customer Data at Hundreds of Banks

Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that exposed personal and financial details of countless customers across hundreds of bank Web sites, KrebsOnSecurity has learned. Brookfield, Wisc.-based Fiserv...

6.5AI score
Exploits0
Rows per page
Query Builder