Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-6268

Malware in sbrugna...

9CVSS7AI score0.02166EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-23842

Malware in sbrugna...

10CVSS9.4AI score0.01438EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-6278

Malware in sbrugna...

10CVSS9.4AI score0.0296EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 4:19 p.m.6 views

CVE-2020-14119

There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command execution under administrator authority on Xiaomi router AX3600 with rom versionrom 1.1.12...

10CVSS7.5AI score0.0296EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:55 p.m.6 views

CVE-2020-14109

There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version = 1.1.12...

9CVSS7.6AI score0.02166EPSS
Exploits0
Code423n4
Code423n4added 2023/03/07 12:0 a.m.9 views

The design defect of the ActivePool rehypothecation mechanism, ReaperVaultV2 administrators have too much authority and have the conditions and motives to do evil, so make users lack trust in the ETHOS system (crisis of trust)

Lines of code Vulnerability details Impact In the design logic of the current system, ActivePool holds all the collaterals of active troves and deposits part of them in ReaperVaultV2 for re-mortgaging. If the deposit and withdraw functions of ReaperVaultV2 revert, Core functions such as borrowing...

7AI score
Exploits0
Prion
Prionadded 2021/09/27 9:15 p.m.14 views

Design/Logic Flaw

There is an unauthorized access vulnerability in the CMS Enterprise Website Construction System 5.0. Attackers can use this vulnerability to directly access the specified background path without logging in to the background to obtain the background administrator authority...

10CVSS9.2AI score0.01438EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2021/09/16 12:15 p.m.9 views

CVE-2020-14109

There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version = 1.1.12...

9CVSS0.02166EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2018/11/09 8:44 a.m.18 views

Concrete CMS: SVG file that HTML Included is able to upload via File Manager

Concrete5 has the whitelist for restricting that malicious file is uploaded. concrete/config/concrete.php, Line no. 8688 The extension whitelist allows to upload SVG file. However, SVG can has the HTML elements in its code. Ref. https://www.w3.org/TR/SVG2/intro.htmlW3CCompatibility If web browser...

6.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 3:27 p.m.10 views

Security Bulletin: IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware GUI User May Gain Administrator Authority

Summary A vulnerability exists in the IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware GUI IBM Spectrum Protect™ for Virtual Environments where an authenticated user can execute GUI functions that require the Tivoli Storage Manager administrative credentials without...

8.5CVSS1.2AI score0.00963EPSS
Exploits0Affected Software1
Rows per page
Query Builder