Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

CNVD
CNVDadded 2018/07/16 12:0 a.m.1 views

SRCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-17521)

SRCMS is a security emergency response and defect management software. A cross-site request forgery vulnerability exists in SRCMS version 2.3.1. An attacker can exploit this vulnerability by adding a user account via admin.php?m=Admin&c=member&a=add...

8.8CVSS8.8AI score0.00127EPSS
Exploits0References1
Filippo.io
Filippo.ioadded 2017/08/12 11:39 p.m.118 views

Cleaning up my GOPATH with Homebrew

tl;dr: use the script at the bottom to go get into the Homebrew "Cellar" and keep your GOPATH clean. I personally like GOPATH and import paths, but while trying to reduce my laptop to a thin reproducible client, I felt the pain of keeping track of the hundreds of repositories that end up in there...

6.9AI score
Exploits0
Hacker One
Hacker Oneadded 2017/04/18 9:8 p.m.104 views

Internet Bug Bounty: Mercurial can be tricked into granting authorized users access to the Python debugger

I reported this bug privately to Mercurial and they produced an out of band release to fix the bug here: https://www.mercurial-scm.org/wiki/WhatsNewMercurial4.1.3.282017-4-18.29 I produced a very detailed proof of concept with a Metasploit exploit module, which can be seen publicly here:...

9CVSS8.6AI score0.48699EPSS
Exploits1
CNVD
CNVDadded 2015/02/12 12:0 a.m.1 views

Kallithea Information Disclosure Vulnerability

Kallithea is a free source code management system. Kallithea suffers from an information disclosure vulnerability that allows remote attackers to obtain sensitive information...

4CVSS6.5AI score0.0026EPSS
Exploits1References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.26 views

ProfileCMS <= 1.0 (id) Remote SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV84$2007 ----------------------------------------------------------------------------------------- ECHOADV84$2007 ProfileCMS = 1.0 Remote SQL Injection Vulnerability...

7.1AI score
Exploits0
Fedora
Fedoraadded 2010/10/28 10:21 p.m.20 views

[SECURITY] Fedora 13 Update: cvs-1.11.23-10.fc13

CVS Concurrent Versions System is a version control system that can record the history of your files usually, but not always, source code. CVS only stores the differences between versions, instead of every version of every file you have ever created. CVS also keeps a log of who, when, and why...

6.9CVSS1.1AI score0.00129EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2003/01/20 9:19 p.m.23 views

Critical: Red Hat Security Advisory: cvs security update

Updated CVS packages are now available for Red Hat Linux Advanced Server. These updates fix a vulnerability which would permit arbitrary command execution on servers configured to allow anonymous read-only access. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 CVS is a...

7.5CVSS6.1AI score0.37007EPSS
Exploits1References3
Rows per page
Query Builder