Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

6 matches found

BDU FSTEC
BDU FSTECโ€ขadded 2025/05/09 12:0 a.m.โ€ข6 views

The vulnerability of the web interface of Xerox WorkCentre 3025 microprogramming software allows a perpetrator to gain unauthorized access to account data.

The vulnerability of the web interface of Xerox WorkCentre 3025 microprogramming software is related to the improper processing of special symbols in input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to account information by sending a specially crafted...

10CVSS5.5AI score
Exploits0Affected Software1
OSV
OSVโ€ขadded 2023/03/21 4:15 p.m.โ€ข2 views

CVE-2022-45635

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy...

7.5CVSS5.8AI score0.00536EPSS
Exploits2References1
OSV
OSVโ€ขadded 2022/07/18 1:15 p.m.โ€ข2 views

CVE-2022-24689

An issue was discovered in DSK DSKNet 2.16.136.0 and 2.17.136.5. It mishandles access control. This allows a remote attacker to access account information pages including personal data without being authenticated. The collected information includes the badge numbers that operate as user login...

5.3CVSS6.7AI score0.03924EPSS
Exploits2References2
OSV
OSVโ€ขadded 2022/04/22 7:15 a.m.โ€ข1 views

CVE-2022-26672

ASUS WebStorage has a hardcoded API Token in the APP source code. An unauthenticated remote attacker can use this token to establish connections with the server and carry out login attempts to general user accounts. A successful login to a general user account allows the attacker to access, modif...

9.8CVSS5.8AI score0.01715EPSS
Exploits0References1
Positive Technologies
Positive Technologiesโ€ขadded 2021/11/16 12:0 a.m.โ€ข3 views

PT-2021-23580 ยท Aifu ยท Aifu

Name of the Vulnerable Software and Affected Versions: AIFU affected versions not specified Description: The issue concerns a bypass of permission control in the AIFU cashier management salary query function. This allows a remote attacker, after obtaining general user permission, to access accoun...

4.3CVSS4.5AI score0.00131EPSS
Exploits0References3
BDU FSTEC
BDU FSTECโ€ขadded 2020/06/10 12:0 a.m.โ€ข1 views

The vulnerability of the software for configuring Schneider Electric Easergy Builder lies in the storage of confidential information in unencrypted form in memory, allowing an attacker to gain access to the account data.

The vulnerability of the Schneider Electric Easergy Builder software for configuring controllers is related to the storage of confidential information in unencrypted form in memory. Exploiting this vulnerability could allow an attacker to gain access to account data...

8.4CVSS7.2AI score0.00026EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder