Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:28 a.m.3 views

CVE-2023-49278

Umbraco is an ASP.NET content management system CMS. Starting in version 8.0.0 and prior to versions 8.18.10, 10.8.1, and 12.3.4, a brute force exploit can be used to collect valid usernames. Versions 8.18.10, 10.8.1, and 12.3.4 contain a patch for this issue...

5.3CVSS6.7AI score0.00315EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-3155

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00315EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-6778

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00361EPSS
Exploits0References1
CNVD
CNVDadded 2024/07/05 12:0 a.m.7 views

Splunk Enterprise Information Disclosure Vulnerability (CNVD-2024-34261)

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines and cloud. Splunk...

5.3CVSS6.3AI score0.00421EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2023/12/13 1:27 p.m.18 views

Brute force exploit can be used to collect valid usernames

Impact A brute force exploit that can be used to collect valid usernames is possible. Explanation of the vulnerability It's a brute force exploit that can be used to collect valid usernames by using the “forgot password” function when trying to log into the Backoffice. If the username/email is...

5.3CVSS5.2AI score0.00315EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2022/10/18 12:0 a.m.6 views

CVE-2022-41540

The web app client of TP-Link AX10v1 V1211117 uses hard-coded cryptographic keys when communicating with the router. Attackers who are able to intercept the communications between the web client and router through a man-in-the-middle attack can then obtain the sequence key via a brute-force attac...

5.6AI score0.04154EPSS
Exploits1References2
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.32 views

HP-UX FTPD <= 1.1.214.4 "REST" Remote Brute Force Exploit

No description provided by source. / Author: phased /str0ke / include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h include netdb.h include stdio.h include unistd.h int main int argc, char argv int sock, rc; long int i; struct sockaddrin saddr; struct hostent h; char...

7.1AI score
Exploits0
0day.today
0day.todayadded 2004/01/21 12:0 a.m.13 views

Apache OpenSSL ASN.1 parsing bugs <=0.9.6j BruteForce Exploit

Exploit for unknown platform in category dos / poc ============================================================= Apache OpenSSL ASN.1 parsing bugs include include include include include include include include include include include include include include char buf8192; / This was simply sniffe...

7AI score
Exploits0
Rows per page
Query Builder