Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/05/13 12:0 a.m.6 views

quark-auto-save 安全漏洞

Quark-auto-save is a personal development tool created by Cp0204, designed for automatic transfer of data to Quark Cloud Storage and management of sign-ins. Versions of quark-auto-save prior to 0.8.5 contained security vulnerabilities. These vulnerabilities stemmed from a batch assignment...

8.8CVSS5.9AI score0.00057EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 3:21 a.m.1 views

SUSE CVE-2023-0591

ubireaderextractfiles is vulnerable to path traversal when run against specifically crafted UBIFS files, allowing the attacker to overwrite files outside of the extraction directory provided the process has write access to that file or directory. This is due to the fact that a node name...

5.5CVSS7AI score0.00298EPSS
Exploits1References3
OSV
OSVadded 2023/01/31 12:30 p.m.16 views

GHSA-VP2X-3MC3-3CJ4 Path traversal in ubi-reader

ubireaderextractfiles is vulnerable to path traversal when run against specifically crafted UBIFS files, allowing the attacker to overwrite files outside of the extraction directory provided the process has write access to that file or directory. This is due to the fact that a node name...

6.8CVSS5.3AI score0.00298EPSS
Exploits1References6
OSV
OSVadded 2021/10/19 3:15 p.m.0 views

UBUNTU-CVE-2021-3746

A flaw was found in the libtpms code that may cause access beyond the boundary of internal buffers. The vulnerability is triggered by specially-crafted TPM2 command packets that then trigger the issue when the state of the TPM2's volatile state is written. The highest threat from this vulnerabili...

6.5CVSS6.9AI score0.00186EPSS
Exploits0References2
CNNVD
CNNVDadded 2021/03/05 12:0 a.m.3 views

Andrew Harding SPIRE 信任管理问题漏洞

Andrew Harding SPIRE is an open source application by Andrew Harding. A toolchain that provides an API for establishing trust between software systems on various hosting platforms. A security vulnerability exists in SPIRE before versions 0.8.5, 0.9.4, 0.10.2, 0.11.3 and 0.12. No information about...

8.1CVSS7.6AI score0.00117EPSS
Exploits0References1
CNVD
CNVDadded 2018/01/08 12:0 a.m.2 views

Shaarli cross-site scripting vulnerability (CNVD-2018-03979)

Shaarli is a set of website cloning tools from the French Sebsauvage project. A cross-site scripting vulnerability exists in versions of Shaarli before 0.8.5 and 0.9.x before 0.9.3. A remote attacker can exploit this vulnerability to inject arbitrary code via the username field of the login form...

6.1CVSS6.7AI score0.0031EPSS
Exploits0References1
OSV
OSVadded 2012/09/10 10:55 p.m.1 views

DEBIAN-CVE-2012-2803

Double free vulnerability in the mpegdecodeframe function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value...

10CVSS7AI score0.00565EPSS
Exploits0References1
Rows per page
Query Builder