Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Nuclei
Nucleiadded 3 days ago19 views

Kaseya VSA 2017 ConnectWise ManagedITSync - Remote Code Execution

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. If the ManagedIT.asmx page is available via the Kaseya VSA web interface, anyone with access to the page is able to run...

9.8CVSS7.6AI score0.80299EPSS
Exploits1References2
NVD
NVDadded 2026/05/06 8:16 p.m.2 views

CVE-2026-44110

OpenClaw before 2026.4.15 contains an authorization bypass vulnerability in Matrix room control-command authorization that trusts DM pairing-store entries. Attackers with DM-paired sender IDs can execute room control commands without being in configured allowlists by posting in bot rooms,...

8.8CVSS0.0005EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/04/13 12:0 a.m.1 views

PT-2026-32486

Name of the Vulnerable Software and Affected Versions simple-git versions prior to 3.32.0 Description The library allows the execution of arbitrary commands through the manipulation of Git options. This occurs because the unsafe operations plugin uses a regular-expression-based blocklist to preve...

8.1CVSS5.9AI score0.00156EPSS
Exploits1References8
EUVD
EUVDadded 2026/04/10 4:3 p.m.2 views

EUVD-2026-21480

OpenClaw before 2026.3.24 contains an incomplete fix for CVE-2026-27486 where the !stop chat command uses an unpatched killProcessTree function from shell-utils.ts that sends SIGKILL immediately without graceful SIGTERM shutdown. Attackers can trigger process termination via the !stop command,...

6.9CVSS5.8AI score0.00019EPSS
Exploits1References2
CNNVD
CNNVDadded 2021/03/18 12:0 a.m.2 views

MikroTik RouterOS 命令注入漏洞

MikroTik RouterOS is a Linux-based router operating system developed by the Latvian company MikroTik. The system can be deployed in a PC to enable it to provide router functionality. A security vulnerability exists in MikroTik RouterOS version 6.47.9 that allows remote authenticated ftp users to...

8.5CVSS5.9AI score0.41887EPSS
Exploits1References2
CNVD
CNVDadded 2018/10/10 12:0 a.m.2 views

Cisco Firepower System Software Command Execution Vulnerability

Cisco Firepower System Software is a next-generation firewall product NGFW from Cisco. A privilege-granting and access-control vulnerability exists in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense FTD sensors, which ste...

8.2CVSS8.1AI score0.00131EPSS
Exploits0References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.151 views

Webmin 0.x RPC Function Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5591/info In cases where users of Webmin do not have root access on the underlying host, it may be possible to mount privilege escalation attacks on the underlying host. This normally occurs in configurations where multip...

7.1AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2005/02/15 10:12 a.m.1 views

security flaw

Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline "%0a" before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT command...

7.5CVSS6.1AI score0.14087EPSS
Exploits0References4
Rows per page
Query Builder