Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3631 matches found

OSV
OSVadded 2023/07/26 9:15 p.m.1 views

DEBIAN-CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.5CVSS7.3AI score0.00771EPSS
Exploits0References1
OSV
OSVadded 2023/07/26 9:15 p.m.24 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.5CVSS7.2AI score0.00771EPSS
Exploits0References2
Prion
Prionadded 2023/07/26 9:15 p.m.28 views

Code injection

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

5CVSS7.5AI score0.00771EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2023/07/26 9:15 p.m.0 views

UBUNTU-CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.5CVSS5.8AI score0.00771EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/07/26 12:0 a.m.21 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.6AI score0.00771EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/07/26 12:0 a.m.7 views

ModSecurity 安全漏洞

ModSecurity is an intrusion detection and blocking engine that can be run as a module of the Apache Web Server or as a standalone application to enhance the security of Web applications and protect them from known and unknown attacks. A security vulnerability exists in Trustwave ModSecurity versi...

7.5CVSS7AI score0.00771EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2023/07/26 12:0 a.m.15 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

6.8AI score0.00771EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2023/07/26 12:0 a.m.27 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.5CVSS7.1AI score0.00771EPSS
Exploits0References3
CVE
CVEadded 2023/07/26 12:0 a.m.411 views

CVE-2023-38285

CVE-2023-38285 affects Trustwave ModSecurity 3.x prior to 3.0.10. The root cause is Inefficient Algorithmic Complexity in certain input handling, leading to potential denial of service with network-based exploitation. The CVSS indicates network attack vector, low attack complexity, and high avail...

7.5CVSS7.3AI score0.00771EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2023/07/26 12:0 a.m.24 views

CVE-2023-38285

Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity...

7.5CVSS7.5AI score0.00771EPSS
Exploits0
NVD
NVDadded 2023/07/24 4:15 a.m.12 views

CVE-2023-3862

A vulnerability was found in Travelmate Travelable Trek Management Solution 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Comment Box Handler. The manipulation of the argument comment leads to cross site scripting. The attack may be...

4.7CVSS3.9AI score0.00361EPSS
Exploits0References2
Prion
Prionadded 2023/07/24 4:15 a.m.14 views

Cross site scripting

A vulnerability was found in Travelmate Travelable Trek Management Solution 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Comment Box Handler. The manipulation of the argument comment leads to cross site scripting. The attack may be...

2.6CVSS4.5AI score0.00361EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2023/07/24 12:0 a.m.3 views

PT-2023-26534 · Unknown · Travelmate Travelable Trek Management Solution

Name of the Vulnerable Software and Affected Versions: Travelmate Travelable Trek Management Solution version 1.0 Description: A vulnerability was found in the component Comment Box Handler of the Travelmate Travelable Trek Management Solution. The manipulation of the comment argument leads to...

4.7CVSS6.5AI score0.00361EPSS
Exploits0References5
Veracode
Veracodeadded 2023/07/23 5:29 p.m.23 views

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. A malicious attacker is able to exploit a regex issue in the submodule URL parser to cause a denial of service due to inefficient regular expression complexity...

5.3CVSS6.6AI score0.00842EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2023/07/23 2:15 a.m.15 views

CVE-2023-3839

A vulnerability, which was classified as problematic, has been found in DedeBIZ 6.2.10. Affected by this issue is some unknown functionality of the file /admin/syssqlquery.php. The manipulation of the argument sqlquery leads to sql injection. The attack may be launched remotely. The complexity of...

7.2CVSS7.3AI score
Exploits0References3
Prion
Prionadded 2023/07/23 2:15 a.m.20 views

Sql injection

A vulnerability, which was classified as problematic, has been found in DedeBIZ 6.2.10. Affected by this issue is some unknown functionality of the file /admin/syssqlquery.php. The manipulation of the argument sqlquery leads to sql injection. The attack may be launched remotely. The complexity of...

4.3CVSS7.2AI score0.00586EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/07/23 2:0 a.m.20 views

CVE-2023-3839 DedeBIZ sys_sql_query.php sql injection

A vulnerability, which was classified as problematic, has been found in DedeBIZ 6.2.10. Affected by this issue is some unknown functionality of the file /admin/syssqlquery.php. The manipulation of the argument sqlquery leads to sql injection. The attack may be launched remotely. The complexity of...

4.3CVSS7.4AI score0.00586EPSS
Exploits1References3
Prion
Prionadded 2023/07/21 1:15 a.m.24 views

Design/Logic Flaw

A vulnerability classified as problematic has been found in Chengdu Flash Flood Disaster Monitoring and Warning System 2.0. This affects an unknown part of the file /Service/ImageStationDataService.asmx of the component File Name Handler. The manipulation leads to insufficiently random values. Th...

1.4CVSS4.3AI score0.00545EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/07/21 12:31 a.m.21 views

CVE-2023-3803 Chengdu Flash Flood Disaster Monitoring and Warning System File Name ImageStationDataService.asmx random values

A vulnerability classified as problematic has been found in Chengdu Flash Flood Disaster Monitoring and Warning System 2.0. This affects an unknown part of the file /Service/ImageStationDataService.asmx of the component File Name Handler. The manipulation leads to insufficiently random values. Th...

2.6CVSS4.5AI score0.00545EPSS
Exploits1References3
Prion
Prionadded 2023/07/19 4:15 p.m.13 views

Sql injection

There is SQL injection vulnerability in Esri ArcGIS Insights 2022.1 for ArcGIS Enterprise and that may allow a remote, authorized attacker to execute arbitrary SQL commands against the back-end database. The effort required to generate the crafted input required to exploit this issue is complex a...

4.6CVSS8AI score0.00502EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder