Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2026/06/17 6:18 p.m.11 views

CVE-2026-9678

Impact: Undici's cache interceptor incorrectly classifies some responses as cacheable when the upstream Cache-Control header uses whitespace-padded qualified private or no-cache field names such as private=" authorization" or no-cache="\tauthorization". The parser preserves the surrounding...

5.9CVSS0.00374EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/17 12:0 a.m.12 views

PT-2026-50515

Name of the Vulnerable Software and Affected Versions undici versions prior to 7.28.0 undici versions prior to 8.5.0 Description The cache interceptor incorrectly classifies certain responses as cacheable when the upstream Cache-Control header contains whitespace-padded qualified private or...

5.9CVSS7AI score0.00374EPSS
Exploits0References55
CNNVD
CNNVDadded 2026/06/03 12:0 a.m.6 views

Django 安全漏洞

Django is a set of open-source web frameworks based on the Python language, developed by the Django Foundation. This framework includes an object-oriented mapper, view system, template system, etc. Versions of Django prior to 5.2.15 and 6.0.6 contained security vulnerabilities. These...

5.3CVSS5.3AI score0.00285EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2024-2784

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00262EPSS
Exploits0References4
Veracode
Veracodeadded 2024/09/05 6:13 a.m.9 views

Sensitive Data Exposure

Flask-AppBuilder is vulnerable to Sensitive Data Exposure. The vulnerability is due to insecure cache directives for the auth DB login form, which allows browsers to locally store sensitive data...

5.5CVSS5.3AI score0.00262EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2024/09/04 4:8 p.m.8 views

CVE-2024-45314

Removed by vendor...

5.5CVSS6.7AI score0.00262EPSS
Exploits0
OSV
OSVadded 2024/09/04 4:8 p.m.17 views

CVE-2024-45314 Flask-AppBuilder login form allows browser to cache sensitive fields

Flask-AppBuilder is an application development framework. Prior to version 4.5.1, the auth DB login form default cache directives allows browser to locally store sensitive data. This can be an issue on environments using shared computer resources. Version 4.5.1 contains a patch for this issue. If...

3.6CVSS6.4AI score0.00262EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Databaseadded 2024/09/04 12:0 a.m.12 views

Flask-AppBuilder's login form allows browser to cache sensitive fields

Auth DB login form default cache directives allows browser to locally store sensitive data. This can be an issue on environments using shared computer resources...

5.5CVSS6.6AI score0.00262EPSS
Exploits0References5Affected Software1
Akamai Blog
Akamai Blogadded 2021/06/23 2:0 p.m.32 views

Targeted Cache Control

Content delivery networks CDNs have been around and have evolved over a long time in internet years. They all speak HTTP and you can safely rely on them to work with just about anything else that speaks HTTP. This is the beauty of standards -- HTTP in this case. What you cannot count on is there...

7.2AI score
Exploits0
Rows per page
Query Builder