Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/01/21 10:36 p.m.3 views

CVE-2026-24046 Backstage has a Possible Symlink Path Traversal in Scaffolder Actions

Backstage is an open framework for building developer portals. Multiple Scaffolder actions and archive extraction utilities were vulnerable to symlink-based path traversal attacks. An attacker with access to create and execute Scaffolder templates could exploit symlinks to read arbitrary files vi...

7.1CVSS5.9AI score0.00022EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.2 views

PT-2026-3875

Name of the Vulnerable Software and Affected Versions Backstage versions prior to 0.12.2, 0.13.2, 0.14.1, and 0.15.0 @backstage/plugin-scaffolder-backend versions prior to 2.2.2, 3.0.2, and 3.1.1 @backstage/plugin-scaffolder-node versions prior to 0.11.2 and 0.12.3 Description The software is...

7.1CVSS5.7AI score0.00022EPSS
Exploits0References9
VulnCheck KEV
VulnCheck KEVadded 2024/01/13 12:0 a.m.1 views

VulnCheck KEV: CVE-2020-11854

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge containerized vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge containerized and Application Performance Management. The...

10CVSS7.7AI score0.92403EPSS
Exploits3References1
IBM Security Bulletins
IBM Security Bulletinsadded 2024/01/03 9:17 a.m.39 views

Security Bulletin: CICS Transaction Gateway Containers are vulnerable to Unrestricted Internet Access/Outbound Connections (CVE-2023-47140).

Summary CICS Transaction Gateway Containers are vulnerable to CVE-2023-47140 if proper egress/ingress policies are not configured at either POD or HOST level. Vulnerability Details CVEID:CVE-2023-47140 DESCRIPTION: IBM CICS Transaction Gateway could allow a user to transfer or view files due to...

8.1CVSS5.8AI score0.00053EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2023/12/01 12:0 a.m.9 views

OwnCloud graphapi 0.2.x < 0.2.1 / 0.3.x < 0.3.1 Sensitive Informations Disclosure

An issue was discovered in OwnCloud graphapi plugin 0.2.x 0.2.1 and 0.3.x 0.3.1. The graphapi plugin relies on a third-party GetPhpInfo.php library that provides a URL. When this URL is accessed, it reveals the configuration details of the PHP environment phpinfo. This information includes all th...

10CVSS6.8AI score0.94329EPSS
Exploits5References3
UbuntuCve
UbuntuCveadded 2021/11/23 8:15 p.m.19 views

CVE-2021-41281

Synapse is a package for Matrix homeservers written in Python 3/Twisted. Prior to version 1.47.1, Synapse instances with the media repository enabled can be tricked into downloading a file from a remote server into an arbitrary directory. No authentication is required for the affected endpoint. T...

7.5CVSS7.1AI score0.00545EPSS
Exploits0References5
Kitploit
Kitploitadded 2021/07/18 9:30 p.m.154 views

ARTIF - An Advanced Real Time Threat Intelligence Framework To Identify Threats And Malicious Web Traffic On The Basis Of IP Reputation And Historical Data.

ARTIF is a new advanced real time threat intelligence framework built that adds another abstraction layer on the top of MISP to identify threats and malicious web traffic on the basis of IP reputation and historical data. It also performs automatic enrichment and threat scoring by collecting,...

7AI score
Exploits0References5
Rows per page
Query Builder