Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/01 1:13 p.m.3 views

Malicious code in ing-ideal-acquiring-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b98d8794a24b74ed659c1fcc64a270aa27181bb12f41b5b50e714177d46e8cf The package ing-ideal-acquiring-shared was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/12/01 1:13 p.m.1 views

MAL-2025-191575 Malicious code in ing-ideal-acquiring-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b98d8794a24b74ed659c1fcc64a270aa27181bb12f41b5b50e714177d46e8cf The package ing-ideal-acquiring-shared was found to contain malicious code...

6.8AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-28697

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.0006EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/04/17 10:11 p.m.9 views

CVE-2024-29955 Insertion of Sensitive Information into Brocade SANnav Log File

A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow a privileged user to print the SANnav encrypted key in PostgreSQL startup logs. This could provide attackers with an additional, less-protected path to acquiring the encryption key...

5CVSS6.7AI score0.00106EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2020/10/02 1:48 p.m.36 views

RBKmoney: Apple Pay cryptogram replay and amount tampering

During Apple Pay in-app or on-site payments the device generates a payment cryptogram, which contains a transaction ID, encrypted payment data, etc. This is an example of the cryptogram which the phone passes to the internet acquiring service on api.transferwise.com: "token": "paymentData":...

Exploits0
Veracode
Veracodeadded 2020/04/10 12:26 a.m.50 views

Information Disclosure

JBoss EAP is vulnerable to Information Disclosure. Authenticated users were able to access the status servlet, which could allow remote attackers to acquire details about deployed web contexts...

5CVSS4.5AI score0.414EPSS
Exploits6References15Affected Software65
IBM Security Bulletins
IBM Security Bulletinsadded 2019/12/17 10:47 p.m.21 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere affect IBM Control Center (CVE-2016-5983, CVE-2016-2923, CVE-2016-3092)

Summary IBM WebSphere Application Server is shipped as a component of IBM Control Center. Multiple vulnerabilities have been addressed. Vulnerability Details CVEID: CVE-2016-5983 DESCRIPTION: IBM WebSphere Application Server could allow remote attackers to execute arbitrary Java code with a...

7.8CVSS1AI score0.40246EPSS
Exploits0Affected Software1
Cvelist
Cvelistadded 2018/10/03 9:0 p.m.11 views

CVE-2018-6695 Threat Intelligence Exchange Server (TIE Server) SSH host keys generation vulnerability

SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server TIE Server 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment...

6.1CVSS5.6AI score0.00176EPSS
Exploits0References1
Citrix
Citrixadded 2017/01/24 12:0 a.m.6 views

UPM 5.2: Getting temporary profiles

Getting temporary profiles...

7.1AI score
Exploits0
Rows per page
Query Builder