Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31236 matches found

Tenable Nessus
Tenable Nessusadded 2023/09/20 12:0 a.m.15 views

Notepad++ Installed (Windows)

Binary data notepadpluspluswininstalled.nbin...

7.3AI score
Exploits0References1
Kitploit
Kitploitadded 2023/09/19 11:30 a.m.33 views

SMShell - Send Commands And Receive Responses Over SMS From Mobile Broadband Capable Computers

PoC for an SMS-based shell. Send commands and receive responses over SMS from mobile broadband capable computers. This tool came as an insipiration during a research on eSIM security implications led by Markus Vervier, presented at Offensivecon 2023 Disclaimer This is not a complete C2 but rather...

7.5AI score
Exploits0References1
OSV
OSVadded 2023/09/19 6:30 a.m.13 views

GHSA-6F9P-G466-F8V8 blamer vulnerable to Arbitrary Argument Injection via the blameByFile() API

Versions of the blamer package before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the...

6.5CVSS9.1AI score0.00924EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2023/09/19 6:30 a.m.23 views

blamer vulnerable to Arbitrary Argument Injection via the blameByFile() API

Versions of the blamer package before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the...

9.1CVSS9.1AI score0.00924EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2023/09/19 5:17 a.m.9 views

CVE-2023-26143

Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the...

9.1CVSS7.3AI score0.00924EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2023/09/19 5:0 a.m.8 views

CVE-2023-26143

Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the...

6.5CVSS7.2AI score0.00924EPSS
Exploits1References3
Cvelist
Cvelistadded 2023/09/19 5:0 a.m.16 views

CVE-2023-26143

Versions of the package blamer before 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the git binary using the...

6.5CVSS9.7AI score0.00924EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2023/09/19 1:56 a.m.4 views

SUSE CVE-2023-36479

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, th...

3.5CVSS8AI score0.01006EPSS
Exploits1References4
BDU FSTEC
BDU FSTECadded 2023/09/19 12:0 a.m.4 views

The vulnerability of the libbfd library in the GNU Binutils development environment, related to the handling of zero pointer operations, allows attackers to trigger a service failure.

The vulnerability of the libbfd library in the GNU Binutils development environment is related to the use of a zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.01042EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTECadded 2023/09/16 12:0 a.m.4 views

The vulnerability of the CLFS driver for Windows operating systems allows attackers to gain increased privileges.

The vulnerability of the CLFS driver in Windows operating systems is related to the issue where operations exceed the buffer boundaries in memory when processing BLF log files. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS7.2AI score0.05356EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2023/09/15 6:37 p.m.36 views

CVE-2023-36479

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, th...

3.5CVSS6AI score0.01006EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2023/09/15 12:0 a.m.37 views

Grafana Labs WebUI Default Credentials

Binary data grafanalabswebuidefaultcreds.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/09/15 12:0 a.m.10 views

NETGEAR ProSAFE Network Management System (NMS) Detection

Binary data netgearnmsdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/09/15 12:0 a.m.34 views

NETGEAR ProSAFE Network Management System Authentication Bypass (CVE-2023-38096)

Binary data netgearnmszdi-23-920.nbin...

9.8CVSS9.3AI score0.83009EPSS
Exploits1References2
OSV
OSVadded 2023/09/14 4:16 p.m.1 views

GHSA-3GH6-V5V9-6V9J Jetty vulnerable to errant command quoting in CGI Servlet

If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, the servlet will escape the command by wrapping it in quotation marks. This wrapped command, plus an optional command prefix, will then be executed through a call to Runtime.exec. If the...

3.5CVSS6.9AI score0.01006EPSS
Exploits1References8
Tenable Nessus
Tenable Nessusadded 2023/09/14 12:0 a.m.18 views

Apple iOS < 16.6.1 Multiple Vulnerabilities (HT213905)

Binary data appleios1661check.nbin...

7.8CVSS7.3AI score0.15263EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2023/09/14 12:0 a.m.25 views

OpenSSH Detection

Binary data opensshdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/09/14 12:0 a.m.22 views

Apple iOS < 15.7.9 Vulnerability (HT213913)

Binary data appleios1579check.nbin...

7.8CVSS7.3AI score0.15263EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2023/09/14 12:0 a.m.10 views

Maxthon Browser Installed (Windows)

Binary data maxthonbrowserwininstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/09/14 12:0 a.m.8 views

Grafana Labs Web Detection

Binary data grafanalabsdetect.nbin...

7.3AI score
Exploits0References1
Rows per page
Query Builder