Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-23878

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00268EPSS
Exploits2References2
RedhatCVE
RedhatCVEadded 2025/05/23 8:5 a.m.6 views

CVE-2024-51560

This vulnerability exists in the Wave 2.0 due to improper exception handling for invalid inputs at certain API endpoint. An authenticated remote attacker could exploit this vulnerability by providing invalid inputs for “userId” parameter in the API request leading to generation of error message...

7.1CVSS6.4AI score0.00255EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 6:41 a.m.7 views

CVE-2024-51559

This vulnerability exists in the Wave 2.0 due to improper authorization checks on certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating API input parameters to gain unauthorized access and perform malicious activities on other user accounts...

7.1CVSS7AI score0.00394EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/23 10:38 a.m.16 views

CVE-2025-42603 Information Disclosure Vulnerability in Meon KYC solutions

This vulnerability exists in the Meon KYC solutions due to transmission of sensitive data in plain text within the response payloads of certain API endpoints. An authenticated remote attacker could exploit this vulnerability by intercepting API response that contains unencrypted sensitive...

8.7CVSS0.00597EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/03/12 12:0 a.m.2 views

PT-2025-11033 · Bitdefender · Bitdefender Box

Name of the Vulnerable Software and Affected Versions: Bitdefender Box versions 1.3.11.490 through 1.3.11.505 Description: The issue concerns the use of the insecure HTTP protocol to download assets over the Internet for updating and restarting daemons and detection rules on devices. Updates can ...

9.4CVSS9.6AI score0.01378EPSS
Exploits0References14
NVD
NVDadded 2024/12/18 7:15 a.m.13 views

CVE-2024-39703

In ThreatQuotient ThreatQ before 5.29.3, authenticated users are able to execute arbitrary commands by sending a crafted request to an API endpoint...

8.8CVSS0.00325EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2022/09/21 3:45 p.m.3 views

CVE-2022-41231

Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system by providing a crafted file name to an API endpoint...

6.5AI score0.00068EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/09/19 12:0 a.m.2 views

PT-2022-25182 · Tenda · Tenda Ac21

Name of the Vulnerable Software and Affected Versions: Tenda AC21 version 16.03.08.15 Description: The issue is related to a Buffer Overflow that can occur via the /bin/httpd, specifically in the function formSetQosBand. This can be exploited through the API endpoint "/bin/httpd". The...

7.5CVSS7.4AI score0.00354EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2022/06/27 12:0 a.m.2 views

PT-2022-3878 · Robustel · Robustel R1510

Name of the Vulnerable Software and Affected Versions: Robustel R1510 version 3.3.0 Description: The issue is related to command injection vulnerabilities in the web server action endpoints functionalities. A specially-crafted network request can lead to arbitrary command execution. The...

10CVSS9.7AI score0.00914EPSS
Exploits1References6
Rows per page
Query Builder