Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-37025

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00297EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-37024

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00259EPSS
Exploits1References3
Veracode
Veracodeadded 2025/09/01 12:1 p.m.4 views

Cross-Site WebSocket Hijacking (CSWSH)

github.com/komari-monitor/komari, is vulnerable to Cross-Site WebSocket Hijacking CSWSH. The vulnerability is due to disabled origin checking, which allows an attacker to hijack authenticated user WebSocket connections...

6.8AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2025/08/12 12:0 a.m.11 views

PT-2025-33680 · Komari · Komari

Name of the Vulnerable Software and Affected Versions: Komari versions prior to 1.0.4-fix1 Description: Komari is a server monitoring tool. A Cross-Site WebSocket Hijacking CSWSH issue exists in the WebSocket upgrader due to disabled origin checking, potentially allowing remote code execution...

8.6CVSS7.9AI score0.00837EPSS
Exploits0References15
Microsoft CVE
Microsoft CVEadded 2024/05/03 7:0 a.m.3 views

Coredns: cd bit response is cached and served later

...

5.3CVSS6.3AI score0.00212EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2022/08/15 1:15 p.m.3 views

CVE-2022-33991

dproxy-nexgen aka dproxy nexgen forwards and caches DNS queries with the CD aka checking disabled bit set to 1. This leads to disabling of DNSSEC protection provided by upstream resolvers...

5.3CVSS5.9AI score0.00259EPSS
Exploits1References4
OSV
OSVadded 2022/08/15 12:15 p.m.2 views

CVE-2022-33992

DNRD aka Domain Name Relay Daemon 2.20.3 forwards and caches DNS queries with the CD aka checking disabled bit set to 1. This leads to disabling of DNSSEC protection provided by upstream resolvers...

7.5CVSS5.8AI score0.00297EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2022/08/15 12:15 p.m.2 views

CVE-2022-33992

DNRD aka Domain Name Relay Daemon 2.20.3 forwards and caches DNS queries with the CD aka checking disabled bit set to 1. This leads to disabling of DNSSEC protection provided by upstream resolvers...

7.5CVSS5.9AI score0.00297EPSS
Exploits0References4
OSV
OSVadded 2010/01/22 10:0 p.m.1 views

DEBIAN-CVE-2010-0290

Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta, with DNSSEC validation enabled and checking disabled CD, allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query a...

4CVSS6.9AI score0.04877EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2010/01/20 3:11 p.m.3 views

BIND upstream fix for CVE-2009-4022 is incomplete

Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 9.5.2-P2, 9.6 before 9.6.1-P3, and 9.7.0 beta, with DNSSEC validation enabled and checking disabled CD, allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query a...

4CVSS7.2AI score0.20044EPSS
Exploits1References4
Rows per page
Query Builder