Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:28 a.m.5 views

CVE-2023-49805

Uptime Kuma is an easy-to-use self-hosted monitoring tool. Prior to version 1.23.9, the application uses WebSocket with Socket.io, but it does not verify that the source of communication is valid. This allows third-party website to access the application on behalf of their client. When connecting...

8.8CVSS6.7AI score0.00376EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/27 2:45 a.m.9 views

EUVD-2025-199783

Anyscale Ray 2.52.0 contains an insecure default configuration in which token-based authentication for Ray management interfaces including the dashboard and Jobs API is disabled unless explicitly enabled by setting RAYAUTHMODE=token. In the default unauthenticated state, a remote attacker with...

9.3CVSS7.6AI score0.00474EPSS
Exploits5References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2025-24118

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00871EPSS
Exploits1References6
OSV
OSVadded 2024/08/21 2:30 p.m.4 views

GO-2022-0405 Potential privilege escalation on Kubernetes >= v1.19 when the Argo Sever is run with `--auth-mode=client` in github.com/argoproj/argo-workflows

Potential privilege escalation on Kubernetes = v1.19 when the Argo Sever is run with --auth-mode=client in github.com/argoproj/argo-workflows...

7.5AI score
Exploits0References1
CNNVD
CNNVDadded 2023/12/22 12:0 a.m.4 views

TOTOLINK EX1800T 安全漏洞

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setWiFiExtenderConfig interface, which originates from the apcliAuthMode parameter of the cstecgi .cgi's setWiFiExtenderConfig interface that fai...

9.8CVSS7.7AI score0.0097EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/12/11 12:0 a.m.5 views

PT-2023-31363 · Unknown · Uptime Kuma

Name of the Vulnerable Software and Affected Versions: Uptime Kuma versions prior to 1.23.9 Description: Uptime Kuma is a self-hosted monitoring tool that uses WebSocket with Socket.io. Prior to version 1.23.9, the application does not verify the source of communication, allowing third-party...

8.8CVSS8.7AI score0.00376EPSS
Exploits1References7
OSV
OSVadded 2023/11/30 11:15 p.m.1 views

CVE-2023-47307

Buffer Overflow vulnerability in /apply.cgi in Shenzhen Libituo Technology Co., Ltd LBT-T300-T310 v2.2.2.6 allows attackers to cause a denial of service via the ApCliAuthMode parameter...

7.5CVSS5.8AI score0.0077EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2015/01/21 12:0 a.m.6 views

PT-2015-5024 · D Link · D-Link Dsl-2730B

Name of the Vulnerable Software and Affected Versions: D-Link DSL-2730B router rev C1 with firmware GE 1.01 Description: The issue allows remote authenticated users to inject arbitrary web script or HTML via several parameters, including the domainname parameter to "dnsProxy.cmd" DNS Proxy...

3.5CVSS6.3AI score0.02829EPSS
Exploits1References8
Rows per page
Query Builder