Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Vulnrichment
Vulnrichmentadded 2026/05/14 2:27 p.m.5 views

CVE-2026-41935 Vvveb < 1.0.8.3 Uncontrolled Recursion Denial of Service

Vvveb before 1.0.8.3 contains an uncontrolled recursion vulnerability in the admin controller dispatch cycle where Base::init repeatedly invokes permission on error handlers, causing infinite recursion until PHP memory limits are exhausted. Attackers can send sustained requests to forbidden admin...

7.1CVSS5.8AI score0.00042EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/01/09 9:52 a.m.5 views

CVE-2020-10408

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/edit-subscriber.php by adding a question mark ? followed by the payload...

4.8CVSS6.1AI score0.00321EPSS
Exploits1References1
GithubExploit
GithubExploitadded 2025/11/01 1:47 p.m.113 views

Talos-Apache-Log-Oversight-Scanner

Talos-Apache-Log-Oversight-Scanner Overview The Talos-Ap...

7.8AI score
Exploits0
OSV
OSVadded 2021/09/22 5:17 p.m.2 views

DRUPAL-CONTRIB-2021-037

This module enables sites to define a domain from Domain Access that points directly to a group page. The module doesn't sufficiently manage the access to content administrative paths allowing an attacker to see and take actions on content nodes they should be allowed to...

6.8AI score
Exploits0References1
OSV
OSVadded 2019/02/11 4:29 a.m.0 views

CVE-2019-7718

An issue was discovered in Metinfo 6.x. An attacker can leverage a race condition in the backend database backup function to execute arbitrary PHP code via admin/index.php?n=databack&c=index&a=dogetsql&tables=?php and admin/databack/bakuptables.php?2=fileputcontents URIs because...

8.1CVSS7.5AI score
Exploits0References1
OpenVAS
OpenVASadded 2017/03/17 12:0 a.m.23 views

Drupal Multiple Vulnerabilities (SA-2017-001) - Linux

Drupal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

8.1CVSS7.7AI score0.03314EPSS
Exploits0References2
Friends Of PHP
Friends Of PHPadded 2017/03/15 8:19 p.m.18 views

Some admin paths were not protected with a CSRF token

More info at https://www.drupal.org/SA-2017-001...

7.5CVSS7.2AI score0.00191EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2017/03/15 8:19 p.m.20 views

Some admin paths were not protected with a CSRF token

More info at https://www.drupal.org/SA-2017-001...

7.5CVSS7.2AI score0.00191EPSS
Exploits0Affected Software1
FreeBSD
FreeBSDadded 2017/03/15 12:0 a.m.20 views

drupal8 -- multiple vulnerabilities

Drupal Security Team reports: CVE-2017-6377: Editor module incorrectly checks access to inline private files CVE-2017-6379: Some admin paths were not protected with a CSRF token CVE-2017-6381: Remote code execution...

8.1CVSS8AI score0.03314EPSS
Exploits0References1
0day.today
0day.todayadded 2017/01/16 12:0 a.m.18 views

MC Real Estate Pro Script - Improper Access Restrictions Vulnerability

Exploit for php platform in category web applications Vulnerability: Improper Access Restrictions Date: 15.01.2017 Vendor Homepage: http://microcode.ws/ Script Name: MC Real Estate Pro Script Buy Now: http://microcode.ws/product/mc-real-estate-pro-php-script/3858 Author: İhsan Şencan Author Web:...

7.1AI score
Exploits0
Rows per page
Query Builder