Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/03 12:0 a.m.15 views

LangChain Core < 1.2.22 Path Traversal (GHSA-qh6h-p6c9-ff54)

The version of LangChain Core installed on the remote host is prior to 1.2.22. It is, therefore, affected by a path traversal vulnerability: - Multiple functions in langchaincore.prompts.loading read files from paths embedded in deserialized config dicts without validating against directory...

7.5CVSS6.3AI score0.00035EPSS
Exploits2References2
ATTACKERKB
ATTACKERKBadded 2026/03/31 2:1 a.m.1 views

CVE-2026-34070

LangChain is a framework for building agents and LLM-powered applications. Prior to version 1.2.22, multiple functions in langchaincore.prompts.loading read files from paths embedded in deserialized config dicts without validating against directory traversal or absolute path injection. When an...

7.5CVSS5.9AI score0.00035EPSS
Exploits2References4Affected Software1
CNNVD
CNNVDadded 2025/12/23 12:0 a.m.2 views

PDFsam Enhanced 代码问题漏洞

PDFsam Enhanced is a PDF editing and management tool from PDFsam, Inc. A code issue vulnerability exists in PDFsam Enhanced that stems from an OpenSSL configuration that loads configuration files from insecure locations, potentially resulting in local elevation of privilege...

6.8CVSS6.4AI score0.00017EPSS
Exploits0References1
CNVD
CNVDadded 2025/12/15 12:0 a.m.2 views

Siemens RUGGEDCOM ROX II Command Injection Vulnerability (CNVD-2026-00016)

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from a command injection vulnerability that is caused by insufficient authentication during the installation and loading of certain configuration files. An attacker...

8.6CVSS8.5AI score0.00017EPSS
Exploits0References1
CVE
CVEadded 2025/12/09 10:44 a.m.5 views

CVE-2024-56837

Siemens RUGGEDCOM ROX II family devices (ROX II) prior to v2.17.0 are affected by a code-injection vulnerability caused by insufficient validation during installation and loading of certain configuration files. Several sources document that an attacker could exploit this to spawn a reverse shell ...

8.6CVSS8.9AI score0.00017EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2025/09/25 12:0 a.m.1 views

Rapid7 AppSpider Pro 安全漏洞

Rapid7 AppSpider Pro is a dynamic application security testing solution from Rapid7, Inc. that allows you to scan Web and mobile applications for vulnerabilities. A security vulnerability exists in Rapid7 AppSpider Pro versions prior to 7.5.021 that stems from an access control flaw in the...

3.3CVSS6.6AI score0.00018EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/06/10 12:0 a.m.2 views

Siemens多款产品 竞争条件问题漏洞

Siemens RUGGEDCOM RST2428P and others are a server communication device from Siemens Canada. A competitive condition issue vulnerability exists in various Siemens products that stems from a competitive condition that could lead to the loading of an attacker-controlled configuration. The following...

5.9CVSS6.4AI score0.00049EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2019/04/15 12:27 p.m.1 views

SImiik <=v1.6.2.1 xss + rce

1.XSS Examples: python3 -m simiki.cli new -t "Hello S...

7.2AI score
Exploits0
Rows per page
Query Builder