Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2026/05/23 11:58 p.m.5 views

MAL-2026-4576 Malicious code in hardhat-gas-analytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71b0b8dd866d9c1f4516f4e537a2d61ea3cbe87f06b0195a24c0dea76fef44c0 This package typosquats the widely-used hardhat-gas-reporter Hardhat plugin matching its cache filename .hardhatgasreporteroutput.json and replicatin...

5.9AI score
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2009-5112

Malware in sbrugna...

6.1CVSS6.3AI score0.00188EPSS
Exploits0References2
NVD
NVDadded 2025/09/17 5:15 p.m.4 views

CVE-2025-59304

A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote attacker to achieve Remote Code Execution via a crafted HTTP request...

9.8CVSS0.04554EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/21 9:54 p.m.5 views

CVE-2009-5158

The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text...

6.1CVSS6.9AI score0.00188EPSS
Exploits0References1
CVE
CVEadded 2025/05/21 4:20 p.m.60 views

CVE-2025-20257

Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager are affected by CVE-2025-20257. The issue stems from insufficient authorization enforcement on a specific API, allowing an authenticated, low-privilege user to perform crafted API calls and generate fraudule...

6.5CVSS6.4AI score0.00195EPSS
Exploits0References1Affected Software1
Hacker One
Hacker Oneadded 2023/01/05 11:14 p.m.21 views

HackerOne: Users querying dim_hacker_reports table through Analytics API can determine data from dim_reports table using WHERE or HAVING query

The Analytics API query builder was vulnerable to a confusion attack that allowed users to query data from the dimreports table using a WHERE or HAVING clause with a FILTER in the HackerOne Analytics Query Language HAQL. This was possible because the dimreports and dimhackerreports tables both...

6.8AI score
Exploits0
NVD
NVDadded 2019/08/22 1:15 p.m.10 views

CVE-2009-5158

The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text...

6.1CVSS6.4AI score0.00188EPSS
Exploits0References1
Prion
Prionadded 2019/08/22 1:15 p.m.12 views

Hardcoded credentials

The google-analyticator plugin before 5.2.1 for WordPress has insufficient HTML sanitization for Google Analytics API text...

4.3CVSS7.1AI score0.00188EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2019/08/22 12:39 p.m.44 views

CVE-2009-5158

The CVE-2009-5158 entry concerns the WordPress plugin google-analyticator, affected in versions prior to 5.2.1. The underlying issue is insufficient HTML sanitization of Google Analytics API text, which enables a cross-site scripting (XSS) vulnerability. Multiple connected sources (Red Hat, CNVD,...

6.1CVSS6.3AI score0.00188EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder