Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/06/13 12:0 a.m.12 views

PT-2026-49073

Name of the Vulnerable Software and Affected Versions abrt-dbus affected versions not specified Description A time-of-check time-of-use TOCTOU race condition exists in the SetElement method of the abrt-dbus D-Bus service. A TOCTOU race condition occurs when a program checks a condition such as a...

7.8CVSS5.6AI score0.00099EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiativeadded 2016/02/11 12:0 a.m.26 views

Novell Zenworks ChangePassword XPath Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to exfiltrate arbitrary text files on vulnerable installations of Novell Zenworks. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ChangePassword RPC method. By providing a malformed query, an attacker ca...

5CVSS5.9AI score0.01272EPSS
Exploits0References1
CVE
CVEadded 2015/11/12 2:0 a.m.44 views

CVE-2015-7817

CVE-2015-7817 affects IBM System Networking Switch Center (SNSC) prior to 7.3.1.5 and Lenovo Switch Center prior to 8.1.2.0. A race condition in the administration-panel web service enables remote attackers to obtain privileged-account access, then feed FileReader.jsp input containing directory t...

7.1CVSS6.6AI score0.01413EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Stormadded 2014/05/19 12:0 a.m.36 views

HP Release Control 9.20.0000 Build 395 XXE

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'HP Release Control Authenticated XXE', 'Description' = %q This module take advantage of three separate vulnerabilities in order to re...

9CVSS6.6AI score0.06839EPSS
Exploits1
Zero Day Initiative
Zero Day Initiativeadded 2013/12/18 12:0 a.m.28 views

EMC Connectrix Manager Converged Network Edition inmservlets.war Information Disclosure Vulnerability

This vulnerability allows remote attackers to read arbitrary text files on vulnerable installations of EMC Connectrix Manager Converged Network Edition. Authentication is not required to exploit this vulnerability. The specific flaw exists within one of the pages served as part of the immservlets...

7.8CVSS2.8AI score0.17004EPSS
Exploits9References1
NVD
NVDadded 2013/09/23 10:18 a.m.15 views

CVE-2013-5490

Cisco Prime Data Center Network Manager DCNM before 6.21 allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue, aka Bug ID CSCud80148...

7.8CVSS6.7AI score0.01707EPSS
Exploits0References3
Prion
Prionadded 2013/09/23 10:18 a.m.20 views

Xxe

Cisco Prime Data Center Network Manager DCNM before 6.21 allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue, aka Bug ID CSCud80148...

7.8CVSS7.2AI score0.01707EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder