Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Positive Technologies
Positive Technologiesadded 2026/05/12 12:0 a.m.11 views

PT-2026-40040

Name of the Vulnerable Software and Affected Versions Ivanti Xtraction versions prior to 2026.2 Description External control of a file name allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory. This can lead to information disclosure and...

9.6CVSS5.9AI score0.00869EPSS
Exploits0References12
Hacker One
Hacker Oneadded 2016/02/18 6:49 p.m.22 views

Uber: Reflected XSS on Uber.com careers

Location www.uber.com/careers/ Description: It is possible for an attacker to inject an arbitrary javascript into city GET parameter. This leads to phishing, defacing from URL, stealing credentials by using a fake login page and many other client side risks. POC: - Logon to...

1.9AI score
Exploits0
securityvulns
securityvulnsadded 2003/03/06 12:0 a.m.28 views

shopfactory shopping cart

Security advisory Issue: Shopfactory e-commerce application allows alteration of order details Date: 03/05/03 Vendor first notified: December 2002 Affected versions: All available versions current version Shopfactory 5.8 ABOUT SHOPFACTORY: Shopfactory is a shopping cart solution. According to the...

6.7AI score
Exploits0
Rows per page
Query Builder