Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Cvelist
Cvelist•added 2026/05/13 2:42 p.m.•24 views

CVE-2026-44291 protobufjs: Code generation gadget after prototype pollution

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs used plain objects with inherited prototypes for internal type lookup tables used by generated encode and decode functions. If Object.prototype had already been polluted, those lookup table...

8.1CVSS0.00023EPSS
Exploits0References1
Packet Storm News
Packet Storm News•added 2026/05/12 12:0 a.m.•5 views

IPI-Proxy: An Intercepting Proxy for Red-Teaming Web-Browsing AI Agents against Indirect Prompt Injection

Web-browsing AI agents are increasingly deployed in enterprise settings under strict whitelists of approved domains, yet adversaries can still influence them by embedding hidden instructions in the HTML pages those domains serve. Existing red-teaming resources fall short of this scenario:...

5.8AI score
Exploits0
OSV
OSV•added 2025/03/31 4:12 p.m.•1 views

GHSA-HX7H-9VF7-5XHG Uptime Kuma's Regular Expression in pushdeeer and whapi file Leads to ReDoS Vulnerability Due to Catastrophic Backtracking

Summary There is a ReDoS vulnerability risk in the system, specifically when administrators create notification through the web servicepushdeer and whapi. If a string is provided that triggers catastrophic backtracking in the regular expression, it may lead to a ReDoS attack. Details The regular...

6.7CVSS7.4AI score0.00022EPSS
Exploits0References8
Kitploit
Kitploit•added 2018/02/16 1:23 p.m.•543 views

IntruderPayloads - A Collection Of Burpsuite Intruder Payloads, Fuzz Lists And File Uploads

A collection of Burpsuite Intruder payloads and fuzz lists and pentesting methodology. To pull down all 3rd party repos, run install.sh in the same directory of the IntruderPayloads folder. Author: 1N3@CrowdShield https://crowdshield.com PENTEST METHODOLOGY v2.0 BASIC PASSIVE AND ACTIVE CHECKS:...

8.3AI score
Exploits0References1
Packet Storm
Packet Storm•added 2003/07/15 12:0 a.m.•23 views

Netsuite121.txt

Moby's Netsuite 1.21 Traversal Directory bugs Release Date: 13 July, 2003 Description: NetSuite is a freeware server suite that allows anyone with a static IP address the ability to run their own mail and web services. Note that you cannot reasonably run a web server from a normal dial-in account...

7.4AI score
Exploits0
securityvulns
securityvulns•added 2001/09/06 12:0 a.m.•29 views

%u encoding IDS bypass vulnerability

u encoding IDS bypass vulnerability Release Date: September 5, 2001 Severity: Medium Systems Affected: Cisco Secure Intrusion Detection System, formerly known as NetRanger, Sensor component. Cisco Catalyst 6000 Intrusion Detection System Module ISS RealSecure Network Sensor 5.x and 6.x before XPU...

7.3AI score
Exploits0
Rows per page
Query Builder