Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 2026/04/30 12:0 a.m.1 views

PT-2026-36212

Name of the Vulnerable Software and Affected Versions Bootstrap CMS version 0.9.0-alpha Description An issue exists in the Page Creation Handler component within the file resources/views/pages/show.blade.php. Manipulation of the body argument allows for remote code injection, which is the executi...

6.5CVSS7.1AI score0.00053EPSS
Exploits0References8
NVD
NVDadded 2026/03/16 2:19 p.m.1 views

CVE-2026-4175

A vulnerability was determined in Aureus ERP up to 1.3.0-BETA2. The affected element is an unknown function of the file plugins/webkul/chatter/resources/views/filament/infolists/components/messages/content-text-entry.blade.php of the component Chatter Message Handler. Executing a manipulation of...

5.1CVSS0.00015EPSS
Exploits0References6
CVE
CVEadded 2025/10/27 10:2 p.m.9 views

CVE-2025-12330

CVE-2025-12330 affects Willow CMS up to 1.4.0. The vulnerability stems from improper handling of parameters in /admin/articles/add (Add Post Page), where manipulation of title/body leads to cross-site scripting. Exploitation can be remote, and public exploits exist. Impact is limited to the descr...

4.8CVSS3.3AI score0.00035EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2024/10/30 9:15 p.m.4 views

CVE-2024-51242

A Server-Side Request Forgery SSRF vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF...

6.5CVSS7.2AI score
Exploits0References1
OSV
OSVadded 2024/01/10 1:15 p.m.0 views

CVE-2023-48256

The vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim’s session via a crafted URL or HTTP request...

6.3CVSS5.9AI score
Exploits0References1
OSV
OSVadded 2023/10/03 1:15 p.m.3 views

CVE-2023-42508

JFrog Artifactory prior to version 7.66.0 is vulnerable to specific endpoint abuse with a specially crafted payload, which can lead to unauthenticated users being able to send emails with manipulated email body...

6.5CVSS5.8AI score0.00362EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2022/06/09 10:57 p.m.62 views

CVE-2022-29225

A flaw was found in Envoy. A specifically constructed HTTP body delivered by an untrusted downstream or upstream peer whose decompressed size is dramatically larger than the compressed size can be sent by an attacker to cause a denial of service. Mitigation This can be mitigated by disabling...

7.5CVSS1.6AI score0.00076EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2020/06/10 1:24 p.m.47 views

CVE-2020-11078

A flaw was found in python-httplib2. An attacker controlling an unescaped part of uri for httplib2.Http.request could change request headers and body, send additional hidden requests to same server. This vulnerability impacts software that uses httplib2 with uri constructed by string concatenatio...

4.3CVSS2.1AI score0.0991EPSS
Exploits2References4
NVD
NVDadded 2002/11/12 5:0 a.m.14 views

CVE-2002-1271

The Mail::Mailer Perl module in the perl-MailTools package 1.47 and earlier uses mailx as the default mailer, which allows remote attackers to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx...

7.5CVSS7.4AI score0.01253EPSS
Exploits0References7
Rows per page
Query Builder