Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

11 matches found

EUVD
EUVDโ€ขadded 2025/10/07 12:30 a.m.โ€ข3 views

EUVD-2020-18087

Malware in sbrugna...

7.5CVSS7.5AI score0.0033EPSS
Exploits0References2
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข3 views

EUVD-2024-42684

Malicious code in bioql PyPI...

7CVSS6.3AI score0.00214EPSS
Exploits0References2
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข5 views

EUVD-2019-0745

Malicious code in bioql PyPI...

9.8CVSS8.6AI score0.11038EPSS
Exploits0References27
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข1 views

EUVD-2023-28821

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00297EPSS
Exploits0References2
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข2 views

EUVD-2022-41796

Malicious code in bioql PyPI...

6.5CVSS6AI score0.00406EPSS
Exploits0References4
RedhatCVE
RedhatCVEโ€ขadded 2025/06/01 2:47 p.m.โ€ข4 views

CVE-2025-3230

Mattermost versions 10.7.x = 10.7.0, 10.6.x = 10.6.2, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly invalidate personal access tokens upon user deactivation, allowing deactivated users to maintain full system access by exploiting access token validation flaws via continued usage of previous...

5.4CVSS6.9AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVEโ€ขadded 2025/05/22 7:49 a.m.โ€ข8 views

CVE-2019-13337

In WESEEK GROWI before 3.5.0, the site-wide basic authentication can be bypassed by adding a URL parameter accesstoken this is the parameter used by the API. No valid token is required since it is not validated by the backend. The website can then be browsed as if no basic authentication is...

7.5CVSS7.1AI score0.00232EPSS
Exploits0References1
Positive Technologies
Positive Technologiesโ€ขadded 2025/05/06 12:0 a.m.โ€ข2 views

PT-2025-20553 ยท Ubiquiti ยท Unifi Protect Application

Name of the Vulnerable Software and Affected Versions: Unifi Protect Application versions 5.3.41 and earlier Description: The issue is related to a misconfigured access token mechanism in the Share Livestream feature of the Unifi Protect Application. This could allow an unauthorized user to...

4.9CVSS4.6AI score0.00178EPSS
Exploits0References8
RedhatCVE
RedhatCVEโ€ขadded 2025/02/08 4:52 a.m.โ€ข4 views

CVE-2025-24805

Mobile Security Framework MobSF is an automated, all-in-one mobile application Android/iOS/Windows pen-testing, malware analysis and security assessment framework. A local user with minimal privileges is able to make use of an access token for materials for scopes which it should not be accepted...

8.5CVSS6.6AI score0.00205EPSS
Exploits1References1
Vulnrichment
Vulnrichmentโ€ขadded 2023/01/02 9:49 p.m.โ€ข5 views

CVE-2022-3994 Authenticator < 1.3.1 - Subscriber+ Denial of Service via Feed Token Disclosure

The Authenticator WordPress plugin before 1.3.1 does not prevent subscribers from updating a site's feed access token, which may deny other users access to the functionality in certain configurations...

4.6AI score0.00355EPSS
Exploits1References1
OSV
OSVโ€ขadded 2021/09/27 7:15 a.m.โ€ข2 views

CVE-2021-41580

The passport-oauth2 package before 1.6.1 for Node.js mishandles the error condition of failure to obtain an access token. This is exploitable in certain use cases where an OAuth identity provider uses an HTTP 200 status code for authentication-failure error reports, and an application grants...

5.3CVSS5.3AI score
Exploits0References3
Rows per page
Query Builder