Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/29 12:0 a.m.9 views

EUVD-2026-33351

The template upload feature in Emlog Pro v2.6.9 has a path traversal vulnerability, allowing authenticated administrators to execute arbitrary PHP code. By uploading a malicious ZIP archive containing directory traversal sequences in filenames, an attacker can overwrite default template files or...

7.2CVSS6.1AI score0.00684EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/05/09 2:58 a.m.7 views

CVE-2026-8208

Gibbon versions before v30.0.01 are affected by a local file inclusion vulnerability resulting in RCE by changing the report archive directory and forcing interpretation of a user provided .zip as PHP. Successful exploitation requires Teacher or higher privileges. Exploitation could result in...

8.9CVSS5.8AI score0.0032EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/01/17 12:25 a.m.2 views

SUSE CVE-2026-21483

listmonk is a standalone, self-hosted, newsletter and mailing list manager. Prior to version 6.0.0, lower-privileged user with campaign management permissions can inject malicious JavaScript into campaigns or templates. When a higher-privileged user Super Admin views or previews this content, the...

6.4CVSS6.2AI score0.00198EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-11249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to...

6.5CVSS6.4AI score0.03732EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2024/11/14 12:0 a.m.4 views

The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing allows a hacker to execute arbitrary code.

The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing is related to an incorrect restriction on the path name to the restricted-access catalog. Exploiting this...

6.3CVSS8.4AI score0.00243EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:10 a.m.2 views

SUSE CVE-2015-8860

The tar package before 2.0.0 for Node.js allows remote attackers to write to arbitrary files via a symlink attack in an archive...

7.5CVSS7.9AI score0.04912EPSS
Exploits0References3
OSV
OSVadded 2015/06/11 2:59 p.m.5 views

CVE-2014-9732

The cabdextract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted CAB...

6.3AI score
Exploits0References3
Debian CVE
Debian CVEadded 2014/12/12 3:0 p.m.27 views

CVE-2014-6407

Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a 1 symlink or 2 hard link attack in an image archive in a a pull or b load operation...

7.5CVSS8AI score0.04909EPSS
Exploits0
Rows per page
Query Builder