Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/05/19 12:0 a.m.4 views

Keycloak 安全漏洞

Keycloak is an open-source identity and access management solution developed by Keycloak. Keycloak has a security vulnerability, which stems from a session fixation issue in the login endpoint. This vulnerability could allow unauthenticated attackers to intercept the authentication process,...

7.5CVSS5.8AI score0.00021EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/10/31 12:0 a.m.1 views

Bizerba BRAIN2 安全漏洞

Bizerba BRAIN2 is an industrial software platform from Bizerba, Germany. A security vulnerability exists in Bizerba BRAIN2 that stems from unencrypted communication when using Active Directory services, which could lead to interception of authentication data and compromise of confidentiality...

8.4CVSS6.8AI score0.00028EPSS
Exploits0References2
OSV
OSVadded 2025/04/08 2:15 p.m.0 views

CVE-2024-26013

A improper restriction of communication channel to intended endpoints vulnerability CWE-923 in Fortinet FortiOS version 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15 and before 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9 and...

7.5CVSS5.8AI score0.00306EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2022/02/24 4:34 a.m.30 views

UPS VDP: Admin Authentication Bypass Lead to Admin Account Takeover

Hello Team I found that i can bypass the login page of the Admin account by intercepting the respone of the login request of connectnb.ups.com subdomain and change status from false to true Steps To Reproduce: 1. Open https://connectnb.ups.com/Layout/login 2. Enter Admin as a Username and 1111 as...

0.1AI score
Exploits0
NVD
NVDadded 2021/08/02 11:15 a.m.13 views

CVE-2021-34574

In MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2 an authenticated attacker can change the password of his account into a new password that violates the password policy by intercepting and modifying the request that is send to t...

4.3CVSS0.0026EPSS
Exploits0References2
exploitpack
exploitpackadded 2011/11/17 12:0 a.m.16 views

webERP 4.3.8 - reportwriterFormMaker.php?ReportID SQL Injection

webERP 4.3.8 - reportwriterFormMaker.php?ReportID SQL Injection source: https://www.securityfocus.com/bid/50713/info webERP is prone to information-disclosure, SQL-injection, and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may...

8.6AI score
Exploits0
exploitpack
exploitpackadded 2000/12/08 12:0 a.m.14 views

KTH Kerberos 4 - Arbitrary Proxy Usage

KTH Kerberos 4 - Arbitrary Proxy Usage source: https://www.securityfocus.com/bid/2090/info Kerberos is a widely used network service authentication system. The version of Kerberos developed and maintained by KTH Swedish Royal Institute of Technology contains a vulnerability that may allow/assist ...

0.4AI score
Exploits0
Rows per page
Query Builder