Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8031 matches found

Positive Technologies
Positive Technologiesadded 2026/05/01 12:0 a.m.3 views

PT-2026-36319

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00065EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2026/04/30 2:47 p.m.1 views

CVE-2026-7306

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS5.1AI score0.0002EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/29 12:0 a.m.4 views

CDAC e-Sushrut 安全漏洞

CDAC e-Sushrut is a system platform provided by the Indian company CDAC, which facilitates hospital information management and medical process support. There is a security vulnerability in CDAC e-Sushrut. This vulnerability stems from the leakage of sensitive information in client-side JavaScript...

8.7CVSS5.8AI score0.00082EPSS
Exploits0References1
NVD
NVDadded 2026/04/28 10:16 p.m.2 views

CVE-2026-7306

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS0.0002EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/04/28 7:30 p.m.1 views

CVE-2026-7306 Xuxueli xxl-job OpenAPI Endpoint OpenApiController.java hard-coded key

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS5.1AI score0.0002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/04/28 7:30 p.m.0 views

CVE-2026-7306

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS4.6AI score0.0002EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/04/28 7:30 p.m.22 views

CVE-2026-7306 Xuxueli xxl-job OpenAPI Endpoint OpenApiController.java hard-coded key

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS0.0002EPSS
Exploits0References6
EUVD
EUVDadded 2026/04/28 7:30 p.m.1 views

EUVD-2026-26150

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument defaulttok...

6.3CVSS5.1AI score0.0002EPSS
Exploits0References6
CVE
CVEadded 2026/04/28 7:30 p.m.5 views

CVE-2026-7306

The CVE-2026-7306 entry affects Xuxueli xxl-job up to version 3.3.2, specifically the OpenAPI Endpoint code path OpenApiController.java in the xxl-job-admin module. The vulnerability arises from manipulation of the default_token argument, which leads to the use of a hard-coded cryptographic key. ...

6.3CVSS5.2AI score0.0002EPSS
Exploits0References6
NVD
NVDadded 2026/04/28 12:16 a.m.0 views

CVE-2026-27785

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS0.00029EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/28 12:0 a.m.1 views

PT-2026-35826

A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/OpenApiController.java of the component OpenAPI Endpoint. Such manipulation of the argument default...

6.3CVSS5.1AI score0.0002EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/04/27 11:40 p.m.25 views

CVE-2026-32644 Milesight Cameras Use of Hard-coded Cryptographic Key

Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys...

9.8CVSS0.00032EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/04/27 11:40 p.m.1 views

CVE-2026-32644 Milesight Cameras Use of Hard-coded Cryptographic Key

Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys...

9.8CVSS5.1AI score0.00032EPSS
Exploits0References3
CVE
CVEadded 2026/04/27 11:38 p.m.11 views

CVE-2026-27785

CVE-2026-27785 affects specific Milesight AIOT camera firmware versions that contain hard-coded credentials. The vulnerability arises from credentials embedded in the firmware, enabling adjacent attackers with low complexity and no privileges required to access confidentiality, integrity, and ava...

8.8CVSS5.2AI score0.00029EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/27 11:38 p.m.25 views

CVE-2026-27785 Milesight Cameras Use of Hard-coded Credentials

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS0.00029EPSS
Exploits0References3
EUVD
EUVDadded 2026/04/27 11:38 p.m.2 views

EUVD-2026-25935

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.1AI score0.00029EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/27 11:38 p.m.1 views

CVE-2026-27785

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.2AI score0.00029EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/04/27 7:23 p.m.1 views

CVE-2026-7018

A vulnerability was determined in Datavane Datavines up to 13607645e14a4982468cfdbcf75c85cde63bae71. The affected element is an unknown function of the file datavines-core/src/main/java/io/datavines/core/utils/TokenManager.java of the component JWT Token Handler. Executing a manipulation of the...

6.3CVSS5.2AI score0.00023EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/04/27 7:59 a.m.2 views

Security Bulletin: IBM Operations Analytics - Log Analysis is affected by denial of service and weaker than expected security vulnerabilities in WebSphere Application Server Liberty

Summary WebSphere Application Server Liberty is used by IBM Operations Analytics - Log Analysis as part of the application security stack and security utility. CVE-2025-14923 and CVE-2024-29371. Vulnerability Details CVEID:CVE-2025-14923 DESCRIPTION: IBM WebSphere Application Server - Liberty...

9.8CVSS5.3AI score0.00035EPSS
Exploits1Affected Software1
Positive Technologies
Positive Technologiesadded 2026/04/27 12:0 a.m.3 views

PT-2026-35544

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.1AI score0.00029EPSS
Exploits0References4
Rows per page
Query Builder