Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

39 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2016-3435

Malware in sbrugna...

9.8CVSS9.5AI score0.00658EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-1735

Malware in sbrugna...

4.9CVSS6.3AI score0.00058EPSS
Exploits1References10
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-34305

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00264EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-47198

Malicious code in bioql PyPI...

8.8CVSS5AI score0.00055EPSS
Exploits1References1
Microsoft CVE
Microsoft CVEadded 2025/07/11 7:0 a.m.1 views

pds_core: remove write-after-free of client_id

...

7.8CVSS7.7AI score0.00068EPSS
Exploits0
CVE
CVEadded 2025/06/16 6:31 p.m.22 views

CVE-2025-6134

Projectworlds Life Insurance Management System 1.0 contains a SQL injection vulnerability in /insertClient.php, caused by manipulation of the client_id parameter. Remote exploitation is possible, and public disclosures exist. Other parameters may be affected. Connected sources note a remediation ...

9.8CVSS6.8AI score0.00181EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2025/05/20 3:21 p.m.79 views

CVE-2025-37916

CVE-2025-37916 concerns the Linux kernel pds_core component. The issue is a use-after-free caused by a write-after-free of client_id in pdsc_auxbus_dev_del during stress testing, leading to a KFENCE reported bug chain. The fix removes the offending write-after-free by eliminating the client_id cl...

7.8CVSS6.7AI score0.00068EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2025/05/20 3:21 p.m.4 views

CVE-2025-37916 pds_core: remove write-after-free of client_id

In the Linux kernel, the following vulnerability has been resolved: pdscore: remove write-after-free of clientid A use-after-free error popped up in stress testing: Mon Apr 21 21:21:33 2025 BUG: KFENCE: use-after-free write in pdscauxbusdevdel+0xef/0x160 pdscore Mon Apr 21 21:21:33 2025...

7.8CVSS7.1AI score0.00068EPSS
Exploits0References7
NVD
NVDadded 2025/03/20 10:15 a.m.4 views

CVE-2024-11302

A missing checkaccess function in the lollmsbindinginfos module of the parisneo/lollms repository, version V14, allows attackers to add, modify, and remove bindings arbitrarily. This vulnerability affects the /installbinding and /reinstallbinding endpoints, among others, enabling unauthorized...

8CVSS0.00076EPSS
Exploits0References1
OSV
OSVadded 2025/03/07 4:15 a.m.0 views

CVE-2025-2062

A vulnerability classified as critical has been found in projectworlds Life Insurance Management System 1.0. Affected is an unknown function of the file /clientStatus.php. The manipulation of the argument clientid leads to sql injection. It is possible to launch the attack remotely. The exploit h...

9.8CVSS6.9AI score
Exploits0References4
OSV
OSVadded 2024/08/01 4:15 p.m.2 views

CVE-2024-6040

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

8.8CVSS4.8AI score
Exploits0References1
NVD
NVDadded 2024/08/01 4:15 p.m.10 views

CVE-2024-6040

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

8.8CVSS0.00055EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/08/01 3:32 p.m.11 views

CVE-2024-6040 Missing client_id in parisneo/lollms-webui

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

4.4CVSS6.9AI score0.00055EPSS
Exploits1References1
CVE
CVEadded 2024/08/01 3:32 p.m.41 views

CVE-2024-6040

CVE-2024-6040 affects parisneo/lollms-webui v9.8 where lollms_binding_infos lacks the client_id parameter. The endpoints /reload_binding, /install_binding, /reinstall_binding, /unInstall_binding, /set_active_binding_settings, and /update_binding_settings are vulnerable to CSRF and local attacks, ...

8.8CVSS4.9AI score0.00055EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2024/08/01 3:32 p.m.13 views

CVE-2024-6040 Missing client_id in parisneo/lollms-webui

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

4.4CVSS0.00055EPSS
Exploits1References1
OSV
OSVadded 2024/06/14 6:15 p.m.0 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

8.8CVSS5.8AI score0.87004EPSS
Exploits5References2
NVD
NVDadded 2024/06/14 6:15 p.m.21 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

8.8CVSS0.87004EPSS
Exploits5References2
CNNVD
CNNVDadded 2024/06/14 12:0 a.m.1 views

Aegon Life SQL Injection Vulnerability

Aegon Life is an application from Aegon Life. A SQL injection vulnerability exists in Aegon Life v1.0, which originates from a SQL injection vulnerability in the clientid parameter in clientStatus.php...

8.8CVSS8AI score0.87004EPSS
Exploits5References2
Cvelist
Cvelistadded 2024/06/14 12:0 a.m.14 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

0.87004EPSS
Exploits5References2
Vulnrichment
Vulnrichmentadded 2024/06/14 12:0 a.m.21 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

8.2AI score0.87004EPSS
Exploits5References2
Rows per page
Query Builder