Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNVD
CNVDadded 2020/10/22 12:0 a.m.1 views

Command Execution Vulnerability in BIMe Data Collaboration Platform UE***.Net Component

Dongchen Gongyuan ProBIM was founded in 2014 as a software provider specializing in BIM cloud services. A command execution vulnerability exists in the UE.Net component of the BIMe data collaboration platform, which can be exploited by an attacker to gain control of the server...

7.4AI score
Exploits0
hackapp
hackappadded 2017/04/02 9:46 a.m.14 views

BIME Mobile - External URLs, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application BIME Mobile published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
Hacker One
Hacker Oneadded 2016/08/19 7:49 p.m.24 views

Bime: Subdomain takeover at ws.bimedb.com due to unclaimed Amazon S3 bucket

The researcher found a subdomain takeover on ws.bimedb.com...

1.8AI score
Exploits0
Hacker One
Hacker Oneadded 2016/07/08 3:53 a.m.16 views

Bime: Urgent: attacker can access every data source on Bime

Vulnerability details I don't include words like "urgent" in my title very often, but I thought you might want to get onto this right away. An attacker can access the data source of any other customer on the BIME platform through the /cubemodels.json endpoint. This leaks, for example, the login...

6.7AI score
Exploits0
Hacker One
Hacker Oneadded 2016/05/28 12:8 p.m.20 views

Bime: Bime Unable to load Data Sources

The BIME unable to load the datasource, when user has created larger number of data source , and as a result it's throws error poppup and the enduser can't do any thing, the entire PAGE got broken, can't delete any datasources which leads entire BIME functionality broken This is Error Popup Messa...

7.2AI score
Exploits0
Hacker One
Hacker Oneadded 2016/03/08 8:46 p.m.276 views

Bime: Subdomain takeover due to unclaimed Amazon S3 bucket on a2.bime.io

I noticed BIME is primarily built on Amazon AWS, which spawned my interest. I started looking for DNS entries that were still pointing to S3 buckets that however no longer exist. It appears this was the case for a2.bime.io, which points to an Amazon S3 website bucket in the US East region. Steps ...

6.9AI score
Exploits0
Hacker One
Hacker Oneadded 2016/01/22 4:9 a.m.19 views

Bime: The JDBC driver used by the Vertica connector allows to create files on the backends

See title...

2.7AI score
Exploits0
Hacker One
Hacker Oneadded 2016/01/22 2:51 a.m.36 views

Bime: SSRF in the Connector Designer (REST and Elastic Search)

Server-Side Request Forgery SSRF in BIME connectors disclosed sensitive AWS metadata...

2.9AI score
Exploits0
Hacker One
Hacker Oneadded 2016/01/21 9:31 p.m.48 views

Bime: XXE in the Connector Designer

A XML External Entity XXE vulnerability allowed an attacker to read arbitrary files on the server...

3.3AI score
Exploits0
Rows per page
Query Builder