Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 6 hours ago7 views

CVE-2026-9016

The Debug Log Manager – Conveniently Monitor and Inspect Errors plugin for WordPress is vulnerable to Improper Output Neutralization for Logs in all versions up to, and including, 2.5.0. This is due to the logjserrors AJAX handler being registered for unauthenticated users via...

5.3CVSS
Exploits0References6
OSV
OSVadded 2025/10/14 3:35 p.m.1 views

JLSEC-2025-41 In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to ...

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

7.5CVSS9.3AI score0.00203EPSS
Exploits1References59
SUSE Linux
SUSE Linuxadded 2025/04/16 7:54 a.m.2 views

Security update for expat

This update for expat fixes the following issues: - CVE-2024-8176: Fixed denial of service from chaining a large number of entities caused by stack overflow by resolving use of recursion bsc1239618 Other fixes: - version update to 2.7.1 jscPED-12500 Bug fixes: 980 989 Restore event pointer...

8.7CVSS7.8AI score0.00803EPSS
Exploits0References8
OSV
OSVadded 2019/09/04 6:15 a.m.3 views

ALPINE-CVE-2019-15903

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

7.5CVSS9.2AI score0.00203EPSS
Exploits1References1
OSV
OSVadded 2019/09/04 12:0 a.m.0 views

UBUNTU-CVE-2019-15903

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XMLGetCurrentLineNumber or XMLGetCurrentColumnNumber then resulted in a heap-based buffer over-read...

7.5CVSS6.9AI score0.00203EPSS
Exploits1References14
Debian CVE
Debian CVEadded 2016/01/04 2:0 a.m.30 views

CVE-2015-8740

The dissecttds7colmetadatatoken function in epan/dissectors/packet-tds.c in the TDS dissector in Wireshark 2.0.x before 2.0.1 does not validate the number of columns, which allows remote attackers to cause a denial of service stack-based buffer overflow and application crash via a crafted packet...

5.3CVSS5.7AI score0.03256EPSS
Exploits1
Packet Storm
Packet Stormadded 2011/03/04 12:0 a.m.22 views

Tramot CMS SQL Injection

Coder : baltazar a.k.a b4ltazar CMS name : Tramot CMS WebSite : http://www.tramot.com/ Dork : inurl:kateg= site:hr intext:tramot : site:hr intext:developed by tramot inurl:kateg= Admin panel : http://www.site.hr/admin Column number : U must check, sometimes it is 6 or 9 or 11 ... Table : users...

0.3AI score
Exploits0
Rows per page
Query Builder