Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-40820

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00586EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/19 12:0 a.m.4 views

PT-2025-38538

Name of the Vulnerable Software and Affected Versions Bimser Solution Software Trade Inc. EBA Document and Workflow Management System versions 6.7.164 through 6.7.165 Description An improper authorization issue exists in Bimser Solution Software Trade Inc. EBA Document and Workflow Management...

6.4CVSS6.7AI score0.00013EPSS
Exploits0References3
CVE
CVEadded 2025/07/03 11:30 a.m.16 views

CVE-2025-27454

CVE-2025-27454 is a CSRF vulnerability affecting Endress+Hauser MEAC300-FNADE4. The issue arises from a WEB application that does not adequately validate requests from trusted users, allowing an attacker to trick a logged-in user into submitting unintended requests using the user’s saved browser ...

4.3CVSS6.6AI score0.00118EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2025/07/03 11:30 a.m.4 views

CVE-2025-27454 CVE-2025-27454

The application is vulnerable to cross-site request forgery. An attacker can trick a valid, logged in user into submitting a web request that they did not intend. The request uses the victim's browser's saved authorization to execute the request...

4.3CVSS0.00118EPSS
Exploits0References6
Cvelist
Cvelistadded 2025/06/27 1:21 p.m.8 views

CVE-2025-53284 WordPress CMS Blocks plugin <= 1.1 - Broken Access Control Vulnerability

Missing Authorization vulnerability in pankaj.sakaria CMS Blocks cms-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CMS Blocks: from n/a through = 1.1...

6.5CVSS0.00188EPSS
Exploits0References1
NVD
NVDadded 2025/05/26 1:15 p.m.9 views

CVE-2025-40667

Missing authorization vulnerability in TCMAN's GIM v11. This allows an authenticated attacker to access any functionality of the application even when they are not available through the user interface. To exploit the vulnerability the attacker must modify the HTTP code of the response from ‘302...

8.7CVSS0.00168EPSS
Exploits0References1
NVD
NVDadded 2025/05/07 3:16 p.m.6 views

CVE-2025-47467

Missing Authorization vulnerability in GS Plugins GS Testimonial Slider gs-testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GS Testimonial Slider: from n/a through = 3.3.0...

4.3CVSS0.00168EPSS
Exploits0References1
NVD
NVDadded 2025/03/23 12:15 a.m.13 views

CVE-2025-2637

A vulnerability, which was classified as problematic, has been found in JIZHICMS up to 1.7.0. Affected by this issue is some unknown functionality of the file /user/userinfo.html of the component Account Profile Page. The manipulation of the argument jifen leads to improper authorization. The...

5.3CVSS0.00103EPSS
Exploits1References4
OpenVAS
OpenVASadded 2009/10/06 12:0 a.m.24 views

IBM DB2 Unspecified Vulnerability (Windows)

The host is installed with IBM DB2 and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: gbibmdb2unspesifiedvulnwin.nasl 4869 2016-12-29 11:01:45Z teissa $ IBM DB2 Unspecified Vulnerability Windows Authors: Antu Sanadi Copyright: Copyright c 2009 Greenbone Networks GmbH,...

10CVSS1.6AI score0.00574EPSS
Exploits0References3
Rows per page
Query Builder