Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2115 matches found

Circl
Circladded 2025/12/03 2:14 p.m.2 views

CVE-2021-47544

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.9CVSS6.1AI score0.00054EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.1 views

CVE-2024-27037

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS5.8AI score0.00014EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.1 views

CVE-2021-47191

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

7.1CVSS6.1AI score0.00009EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.0 views

CVE-2021-47391

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

7.8CVSS6.1AI score0.00016EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.0 views

CVE-2025-38342

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

7.1CVSS6.8AI score0.00067EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.2 views

CVE-2024-26930

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

7.8CVSS5.8AI score0.00014EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.2 views

CVE-2024-35867

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

7.8CVSS5.8AI score0.00012EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.1 views

CVE-2022-49664

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS6.4AI score0.00133EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.5 views

CVE-2023-52498

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS6.5AI score0.00015EPSS
Exploits0References1
Circl
Circladded 2025/12/03 2:14 p.m.1 views

CVE-2023-52781

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS6.7AI score0.00005EPSS
Exploits0References1
Drupal
Drupaladded 2025/12/03 12:0 a.m.8 views

Mini site - Moderately critical - Cross-Site Scripting - SA-CONTRIB-2025-117

This module allows uploading a zip file and extracting its content in the public file directory to serve this content from a Drupal website. These zip files may contain arbitrary HTML or SVG content that could allow cross-site scripting vulnerabilities. While this is an expected feature, the modu...

5.4CVSS5.5AI score0.0005EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/11/27 6:23 a.m.6 views

CVE-2025-13674

A flaw in the BPv7 Bundle Protocol v7 dissector in Wireshark 4.6.0 can cause the application to crash when processing certain malformed packets or trace files. The bug was discovered during internal fuzzing and occurs due to a use-after-free memory error triggered while decoding BPv7 elements...

5.5CVSS6.6AI score0.00013EPSS
Exploits0References5
Snyk
Snykadded 2025/11/25 8:48 p.m.4 views

Cross-site Scripting (XSS)

Overview contao/core-bundle is an Open Source PHP Content Management System for people who want a professional website that is easy to maintain. Affected versions of this package are vulnerable to Cross-site Scripting XSS via template output. An attacker can execute arbitrary scripts in the brows...

4.8CVSS5.5AI score0.0002EPSS
Exploits0References2
Snyk
Snykadded 2025/11/25 8:43 p.m.2 views

Insufficient Type Distinction

Overview contao/core-bundle is an Open Source PHP Content Management System for people who want a professional website that is easy to maintain. Affected versions of this package are vulnerable to Insufficient Type Distinction in the Template::once method. Backend users with sufficient privileges...

7.5CVSS7.2AI score0.0002EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/11/14 11:38 p.m.8 views

CVE-2025-64308 Brightpick Mission Control / Internal Logic Control Unprotected Transport of Credentials

The Brightpick Mission Control web application exposes hardcoded credentials in its client-side JavaScript bundle...

8.7CVSS0.00046EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/11/14 11:38 p.m.2 views

CVE-2025-64308 Brightpick Mission Control / Internal Logic Control Unprotected Transport of Credentials

The Brightpick Mission Control web application exposes hardcoded credentials in its client-side JavaScript bundle...

8.7CVSS6.5AI score0.00046EPSS
Exploits0References3
OSV
OSVadded 2025/11/14 4:29 p.m.4 views

CLSA-2025-1763137741 python3.11-cryptography: Fix of CVE-2023-49083

CVE-2023-49083: fix crash when loading PKCS7 bundle with no certificates - Fix RUSTFLAGS macro expansion in build process...

7.5CVSS6.7AI score0.01255EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/11/14 12:0 a.m.3 views

PT-2025-47030

Name of the Vulnerable Software and Affected Versions Brightpick Mission Control affected versions not specified Description The Brightpick Mission Control web application contains hardcoded credentials within its client-side JavaScript bundle. These credentials are directly embedded in the code,...

8.7CVSS6.5AI score0.00046EPSS
Exploits0References9
EUVD
EUVDadded 2025/11/13 3:23 a.m.0 views

EUVD-2025-179251

Malicious code in double-decode-encrypt-cache-bundle npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/13 3:23 a.m.4 views

Malicious code in air-epsilon-zeta-key-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3315bade14bc91e0c028f375cddafcc7a08630f221281feff53d52abe8355d54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder