Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

86686 matches found

EUVD
EUVDadded 2026/06/01 11:45 a.m.12 views

EUVD-2026-33633

A flaw has been found in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /admin/. This manipulation causes file and directory information exposure. The attack can be initiated remotely. The exploit has been published and may be used...

6.9CVSS5.8AI score0.00329EPSS
Exploits0References6
NVD
NVDadded 2026/06/01 11:16 a.m.11 views

CVE-2026-10249

A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might...

7.5CVSS0.00269EPSS
Exploits0References6
CVE
CVEadded 2026/06/01 10:45 a.m.26 views

CVE-2026-10250

The vulnerability CVE-2026-10250 affects itsourcecode Online Blood Bank Management System 1.0. An SQL injection can be triggered by manipulating the hospital argument in an unknown function of the file /admin/campsdetails.php, allowing remote exploitation. Exploit has been released publicly (expl...

7.5CVSS5.7AI score0.00263EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/01 10:30 a.m.9 views

CVE-2026-10249 itsourcecode Online Blood Bank Management System viewrequest.php sql injection

A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might...

7.5CVSS7AI score0.00269EPSS
Exploits0References6
CVE
CVEadded 2026/06/01 10:30 a.m.12 views

CVE-2026-10249

The vulnerability CVE-2026-10249 affects itsourcecode Online Blood Bank Management System 1.0, specifically an unknown function in /admin/viewrequest.php where manipulation of the ID argument triggers SQL injection. It can be exploited remotely, and a public exploit is available. The CVSS metrics...

7.5CVSS5.8AI score0.00269EPSS
Exploits0References6
Snyk
Snykadded 2026/06/01 10:29 a.m.5 views

Insecure Default Initialization of Resource

Overview org.apache.solr:solr-core is an open source enterprise search platform built on Apache Lucene Affected versions of this package are vulnerable to Insecure Default Initialization of Resource in the Basic Authentication setup bin/solr auth enable tool. An attacker can gain full...

9.8CVSS7.7AI score0.00812EPSS
Exploits0References3
CVE
CVEadded 2026/06/01 9:37 a.m.12 views

CVE-2026-25600

The CVE describes a local-privilege escalation in the PDBM application caused by a hard-coded secret embedded in PDBM.exe that is reused by encryption routines to decrypt credentials in the configuration file. Because the secret is constant across installations, an attacker with sufficient local ...

6.4CVSS5.8AI score0.00065EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/01 9:37 a.m.30 views

CVE-2026-25600 Credential Exposure Vulnerability in Trac PDBM

The PDBM application relies on a static, hard‑coded secret embedded in the PDBM.exe executable. This secret is used by the application’s encryption routines, including the function responsible for decrypting credentials stored in the product’s configuration file. Because the secret is constant...

6.4CVSS0.00065EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/01 9:37 a.m.8 views

CVE-2026-25600

The PDBM application relies on a static, hard‑coded secret embedded in the PDBM.exe executable. This secret is used by the application’s encryption routines, including the function responsible for decrypting credentials stored in the product’s configuration file. Because the secret is constant...

6.4CVSS5.8AI score0.00065EPSS
Exploits0References2
NVD
NVDadded 2026/06/01 9:16 a.m.17 views

CVE-2026-49157

Incorrect Default Permissions vulnerability in Apache ActiveMQ. This issue affects Apache ActiveMQ: before 5.19.7, from 6.0.0 before 6.2.6. The default Jolokia authorization settings granted non-admin low-privilege web-login accounts access to Jolokia operations which allowed executing broker...

8.8CVSS0.00373EPSS
Exploits0References2
NVD
NVDadded 2026/06/01 9:16 a.m.11 views

CVE-2026-10243

A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may b...

7.5CVSS0.00514EPSS
Exploits0References6
OSV
OSVadded 2026/06/01 9:16 a.m.7 views

UBUNTU-CVE-2026-49157

Incorrect Default Permissions vulnerability in Apache ActiveMQ. This issue affects Apache ActiveMQ: before 5.19.7, from 6.0.0 before 6.2.6. The default Jolokia authorization settings granted non-admin low-privilege web-login accounts access to Jolokia operations which allowed executing broker...

8.8CVSS5.8AI score0.00373EPSS
Exploits0References5
GithubExploit
GithubExploitadded 2026/06/01 9:6 a.m.86 views

Exploit for CVE-2026-8732

CVE-2026-8732 - WordPress WP Google Map Pro Mass Scanner & Aut...

9.8CVSS6.2AI score0.00358EPSS
Exploits7
CVE
CVEadded 2026/06/01 9:0 a.m.11 views

CVE-2026-10243

CVE-2026-10243 affects code-projects Smart Parking System 1.0, specifically an Admin Endpoint function with missing authentication leading to remote abuse. Public exploit disclosed; multiple endpoints are affected. The connected documents confirm vulnerability presence and exposure but do not pro...

7.5CVSS6.7AI score0.00514EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/01 9:0 a.m.9 views

EUVD-2026-33608

A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may b...

7.5CVSS6.7AI score0.00514EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/01 9:0 a.m.29 views

CVE-2026-10243 code-projects Smart Parking System Admin Endpoint missing authentication

A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may b...

7.5CVSS0.00514EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/01 9:0 a.m.8 views

CVE-2026-10243

A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may b...

7.5CVSS6.7AI score0.00514EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/01 9:0 a.m.8 views

CVE-2026-10243 code-projects Smart Parking System Admin Endpoint missing authentication

A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may b...

7.5CVSS6.7AI score0.00514EPSS
Exploits0References6
The Hacker News
The Hacker Newsadded 2026/06/01 8:45 a.m.12 views

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrator accounts on susceptible sites. WP Maps Pro allows site owners to embed customizable Google Map...

9.8CVSS5.7AI score0.00358EPSS
Exploits7
Cvelist
Cvelistadded 2026/06/01 8:2 a.m.39 views

CVE-2026-44825 Apache Solr: Enabling BasicAuth using bin/solr CLI configures additional insecure users

Hardcoded credentials in the Basic Authentication setup tool bin/solr auth enable in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a remote attacker to gain full administrative access to the cluster via publicly known default credentials installed silently alongside the user-specifi...

8.1CVSS0.00812EPSS
Exploits0References1
Rows per page
Query Builder