Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/03/04 5:56 p.m.6 views

DRUPAL-CONTRIB-2026-021

This module moves files to and from private storage depending on the access of its owning entities. The module does not always validate the access logic correctly, resulting in files attached to an entity not being protected in certain circumstances. This vulnerability is mitigated by the fact th...

5.3CVSS6AI score0.00256EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/07/24 12:0 a.m.1 views

PT-2023-4211 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7.9 macOS versions prior to 12.6.8 macOS versions prior to 13.5 Description: A logic issue was addressed with improved restrictions, which may allow an app to access user-sensitive data. The issue is related to the...

5.5CVSS5.6AI score0.0022EPSS
Exploits0References11
NVD
NVDadded 2023/02/27 8:15 p.m.14 views

CVE-2022-42838

An issue with app access to camera data was addressed with improved logic. This issue is fixed in macOS Ventura 13. A camera extension may be able to continue receiving video after the app which activated was closed...

3.3CVSS2.9AI score0.00224EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/02/27 12:0 a.m.24 views

CVE-2022-42838

An issue with app access to camera data was addressed with improved logic. This issue is fixed in macOS Ventura 13. A camera extension may be able to continue receiving video after the app which activated was closed...

5.4AI score0.00224EPSS
Exploits0References1
OSV
OSVadded 2021/08/20 10:6 p.m.3 views

OPENSUSE-SU-2021:1173-1 Security update for prosody

This update for prosody fixes the following issues: prosody was updated to 0.11.10: Security: MUC: Fix logic for access to affiliation lists CVE-2021-37601 boo1188976 https://prosody.im/security/advisory20210722/ Minor changes: prosodyctl: Add ‘limits’ to known globals to warn about misplacing it...

7.5CVSS7.4AI score0.02329EPSS
Exploits1References3
CVE
CVEadded 2011/03/23 9:0 p.m.37 views

CVE-2010-4775

CVE-2010-4775 affects Drupal’s Relevant Content module (5.x prior to 5.x-1.4 and 6.x prior to 6.x-1.5). The issue is improper node access logic, enabling remote attackers to discover restricted node titles and relationships. No exploitation details or patches are provided in the connected documen...

5CVSS7AI score0.01489EPSS
Exploits0References7Affected Software1
Drupal
Drupaladded 2010/11/10 12:0 a.m.11 views

SA-CONTRIB-2010-103 - Node Relativity - Multiple vulnerabilities

The Node Relativity module allows parent-child relationships between nodes to be established, managed and searched. The Node Relativity module does not sanitize some of the user supplied data before displaying it, leading to a Cross Site Scripting XSS vulnerability which can be used by a maliciou...

6.7AI score
Exploits0References12
Prion
Prionadded 2010/08/19 10:0 p.m.23 views

Design/Logic Flaw

page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPosition function, which has unspecified impact and remote attack vectors, aka rdar problem 7746357...

10CVSS7AI score0.02133EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder