Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

345 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-3402

Malware in sbrugna...

9.3CVSS8.5AI score0.02103EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-3025

Malware in sbrugna...

9.8CVSS9.2AI score0.01231EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-1993

Malware in sbrugna...

4.9CVSS4.9AI score0.01113EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-0581

Malware in sbrugna...

7.7CVSS6.6AI score0.01397EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-0607

Malware in sbrugna...

6.8CVSS6.3AI score0.02464EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-7993

Malware in sbrugna...

6.5CVSS6.6AI score0.02313EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-9995

Malware in sbrugna...

6.1CVSS6.3AI score0.00978EPSS
Exploits2References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-4383

Malware in sbrugna...

6.1CVSS6.3AI score0.01137EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/05 9:30 a.m.6 views

EUVD-2025-32450

A security flaw has been discovered in CRMEB up to 5.6. This issue affects some unknown processing of the file /adminapi/product/product of the component GET Parameter Handler. Performing manipulation of the argument cateid results in sql injection. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.00299EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/10/05 7:32 a.m.3 views

CVE-2025-11288 CRMEB GET Parameter product sql injection

A security flaw has been discovered in CRMEB up to 5.6. This issue affects some unknown processing of the file /adminapi/product/product of the component GET Parameter Handler. Performing a manipulation of the argument cateid results in sql injection. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.00299EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-11882

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.10325EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.21 views

EUVD-2023-0135

Malicious code in bioql PyPI...

4.9CVSS5AI score0.01166EPSS
Exploits0References14
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-6691

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.01285EPSS
Exploits2References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-34216

Malicious code in bioql PyPI...

9.8CVSS8.9AI score0.01191EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-29115

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00715EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/08/28 10:2 p.m.10 views

CVE-2025-9591 ZrLog Theme Configuration Form config cross site scripting

A security vulnerability has been detected in ZrLog up to 3.1.5. This vulnerability affects unknown code of the file /api/admin/template/config of the component Theme Configuration Form. Such manipulation of the argument footerLink leads to cross site scripting. The attack may be launched remotel...

4.8CVSS0.00261EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/08/22 12:22 a.m.24 views

CVE-2025-50904

There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 2025-06-11. An attacker can exploit this vulnerability to access /admin/ API without any token...

9.8CVSS7.4AI score0.00415EPSS
Exploits1References1
Packet Storm
Packet Stormadded 2025/07/30 12:0 a.m.270 views

📄 Caddy 2.10.0 Server-Side Request Forgery

Caddy version 2.10.0 suffers from a server-side request forgery vulnerability via a JSON configuration injection. Exploit Title: Caddy 2.10.0 - Admin API SSRF via JSON Config Injection Date: 2025-07-10 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://caddyserver.com/ Software Link:...

7.7AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 10:9 a.m.3 views

CVE-2024-39021

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/vpsApiDatadeal.php?mudi=del...

5.4CVSS7.6AI score0.00185EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:48 p.m.8 views

CVE-2022-29906

The admin API module in the QuizGame extension for MediaWiki through 1.37.2 before 665e33a68f6fa1167df99c0aa18ed0157cdf9f66 omits a check for the quizadmin user...

9.8CVSS6.9AI score0.01191EPSS
Exploits1References1
Rows per page
Query Builder