Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-47104

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.07327EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:10 a.m.5 views

CVE-2022-36265

In Airspan AirSpot 5410 version 0.3.4.1-4 and under there exists a Hidden system command web page. After performing a reverse engineering of the firmware, it was discovered that a hidden page not listed in the administration management interface allows a user to execute Linux commands on the devi...

7.2CVSS7.3AI score0.00549EPSS
Exploits1References1
NVD
NVDadded 2024/12/10 7:15 p.m.11 views

CVE-2024-54008

An authenticated Remote Code Execution RCE vulnerability exists in the AirWave CLI. Successful exploitation of this vulnerability could allow a remote authenticated threat actor to run arbitrary commands as a privileged user on the underlying host...

7.2CVSS0.02347EPSS
Exploits0References1
CVE
CVEadded 2024/12/10 6:23 p.m.66 views

CVE-2024-54008

CVE-2024-54008 describes an authenticated Remote Code Execution (RCE) in the AirWave CLI, allowing a remote authenticated threat actor to execute arbitrary commands as a privileged user on the underlying host. Affected software is HPE Aruba Networking AirWave Management Platform. The available so...

7.2CVSS7.1AI score0.02347EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/12/10 6:23 p.m.8 views

CVE-2024-54008 Authenticated Remote Code Execution (RCE) in HPE Aruba Networking AirWave Management Platform

An authenticated Remote Code Execution RCE vulnerability exists in the AirWave CLI. Successful exploitation of this vulnerability could allow a remote authenticated threat actor to run arbitrary commands as a privileged user on the underlying host...

7.2CVSS7.5AI score0.02347EPSS
Exploits0References1
OSV
OSVadded 2024/08/30 11:15 p.m.2 views

CVE-2024-6585

Multiple stored cross-site scripting “XSS” vulnerabilities in the markdown dashboard and dashboard comment functionality of Lightdash version 0.1024.6 allows remote authenticated threat actors to inject malicious scripts into vulnerable web pages. A threat actor could potentially exploit this...

5.4CVSS6AI score0.00128EPSS
Exploits0References8
Cvelist
Cvelistadded 2024/08/30 10:17 p.m.14 views

CVE-2024-6585

Multiple stored cross-site scripting “XSS” vulnerabilities in the markdown dashboard and dashboard comment functionality of Lightdash version 0.1024.6 allows remote authenticated threat actors to inject malicious scripts into vulnerable web pages. A threat actor could potentially exploit this...

0.00128EPSS
Exploits0References8
OSV
OSVadded 2024/02/29 1:43 a.m.0 views

CVE-2024-1206

The WP Recipe Maker plugin for WordPress is vulnerable to SQL Injection via the 'recipes' parameter in all versions up to, and including, 9.1.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

8.8CVSS5.9AI score
Exploits0References7
Rows per page
Query Builder