Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-0084

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00558EPSS
Exploits1References5
Huntr
Huntradded 2022/07/17 11:48 a.m.22 views

[Bypass] Cross-site Scriptin (XSS) via file upload

🔒️ Requirements Privileges: User. 📝 Description I found a bypass to this report by uploading the file with "public": true, parameter. This is due to the fact that AWS bucket public folder does not auto download files when we access them. 🕵️‍♂️ Proof of Concept Step 1: Go your outline home and...

0.2AI score
Exploits0
OSV
OSVadded 2022/06/09 4:15 a.m.20 views

PYSEC-2022-208

django-s3file is a lightweight file upload input for Django and Amazon S3 . In versions prior to 5.5.1 it was possible to traverse the entire AWS S3 bucket and in most cases to access or delete files. If the AWSLOCATION setting was set, traversal was limited to that location only. The issue was...

9.8CVSS2.1AI score0.00558EPSS
Exploits1References2
Malwarebytes
Malwarebytesadded 2021/09/28 12:47 p.m.15 views

Phone screenshots accidentally leaked online by stalkerware-type company

pcTattleTale hasnt been very careful about securing the screenshots it sneakily takes from its victims phones. pcTattleTale markets itself as "employee and child monitoring software" that is undetectable by the device user, but it can also be used to spy on spouses and partners. It allows its...

1AI score
Exploits0
Hacker One
Hacker Oneadded 2021/03/09 8:14 p.m.18 views

Acronis: Information Disclosure via ZIP file on AWS Bucket [http://acronis.1.s3.amazonaws.com]

Summary Hello, @acronis Team I hope you all doing well. during My recon, I found OPEN S3 BUCKET http://acronis.1.s3.amazonaws.com and this BUCKET has an ZIP file . and this file contains sensitive information about the internal system of Acronis. This Zip file Is from 2018. And it looks like it w...

6.4AI score
Exploits0
HackRead
HackReadadded 2020/12/23 6:12 p.m.37 views

Fashion marketplace giant 21 Buttons exposes millions of users’ data

By Sudais Asif According to researchers, the misconfigured AWS bucket is still exposed and 21 Buttons has not responded to them. This is a post from HackRead.com Read the original post: Fashion marketplace giant 21 Buttons exposes millions of users data...

3.7AI score
Exploits0
ThreatPost
ThreatPostadded 2020/02/27 3:56 a.m.64 views

RSAC 2020: Smart Baby Monitor Vulnerable to Remote Hackers

SAN FRANCISCO – Researchers have discovered a slew of security vulnerabilities in a popular baby monitor, which if exploited allows attackers to remotely access the camera’s video footage. The vulnerabilities were discovered in the iBaby Monitor M6S connected baby camera by researchers with...

1.1AI score
Exploits0References7
Rows per page
Query Builder