Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2021-30233

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01614EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-30234

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.03661EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 9:36 p.m.4 views

CVE-2021-43290

An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD agent can upload a malicious file into a directory of a GoCD server. They can control the filename but the directory is placed inside of a directory that they can't control...

9.8CVSS6.9AI score0.03661EPSS
Exploits1
Github Security Blog
Github Security Blogadded 2025/04/22 4:53 p.m.27 views

Wazuh server vulnerable to remote code execution

Summary An unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. The vulnerability can be triggered by anybody with API access compromised dashboard or Wazuh servers in the cluster or, in certain configurations, even by a compromised agent. Details DistributedAPI...

9.9CVSS8.2AI score0.93874EPSS
Exploits10References4Affected Software1
OSV
OSVadded 2025/04/22 4:53 p.m.14 views

GHSA-HCRC-79HJ-M3QH Wazuh server vulnerable to remote code execution

Summary An unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. The vulnerability can be triggered by anybody with API access compromised dashboard or Wazuh servers in the cluster or, in certain configurations, even by a compromised agent. Details DistributedAPI...

9.9CVSS8.2AI score0.93874EPSS
Exploits10References4
OSV
OSVadded 2022/10/14 12:0 a.m.16 views

CVE-2022-39309 GoCD server secret encryption/decryption key leaked to agents during material serialization

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decrypt any secure variables/secrets in GoCD configuration to authenticated agent...

4.9CVSS6.2AI score0.00355EPSS
Exploits0References6
CNNVD
CNNVDadded 2022/04/14 12:0 a.m.1 views

ThoughtWorks GoCD 路径遍历漏洞

ThoughtWorks GoCD is a free and open source CI/CD server from ThoughtWorks, Inc. A path traversal vulnerability exists in versions of ThoughtWorks GoCD prior to 21.3.0, which could be exploited by an attacker compromising the GoCD agent to upload malicious files to any directory on the GoCD serve...

7.5CVSS7.3AI score0.01614EPSS
Exploits1References5
The Hacker News
The Hacker Newsadded 2019/04/13 5:55 p.m.1 views

Hackers Compromise Microsoft Support Agent to Access Outlook Email Accounts

If you have an account with Microsoft Outlook email service, there is a possibility that your account information has been compromised by an unknown hacker or group of hackers, Microsoft confirmed The Hacker News. Earlier this year, hackers managed to breach Microsoft's customer support portal an...

6.5AI score
Exploits0
Rows per page
Query Builder