Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Github Security Blog
Github Security Blogadded 2026/03/03 7:53 p.m.3 views

OpenClaw's config env vars allowed startup env injection into service runtime

Summary OpenClaw allowed dangerous process-control environment variables from env.vars for example NODEOPTIONS, LD, DYLD to flow into gateway service runtime environments, enabling startup-time code execution in the OpenClaw process context. Details collectConfigEnvVars accepted unfiltered keys...

8.8CVSS6.3AI score0.00025EPSS
Exploits0References6Affected Software1
CNNVD
CNNVDadded 2025/10/30 12:0 a.m.2 views

Drupal Reverse Proxy Header 安全漏洞

Drupal Reverse Proxy Header is a custom HTTP header plugin for the Drupal community. A security vulnerability exists in Drupal Reverse Proxy Header version 0.0.0 through versions prior to 1.1.2, which stems from improper input consistency validation and could lead to the manipulation of user...

5.3CVSS6.4AI score0.00104EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/02/26 2:23 a.m.1 views

CVE-2022-49638 icmp: Fix data-races around sysctl.

In the Linux kernel, the following vulnerability has been resolved: icmp: Fix data-races around sysctl. While reading icmp sysctl variables, they can be changed concurrently. So, we need to add READONCE to avoid data-races...

6.1AI score0.00007EPSS
Exploits0References8
myhack58
myhack58added 2015/05/28 12:0 a.m.7 views

DayuCMS 1.526 and DirCMS front any code to perform the analysis and POC-vulnerability warning-the black bar safety net

DayuCMS in converting the string to array function in the direct use of eval, and presence of control variables, leading to arbitrary code execution. DayuCMS may reference the DirCMS code, The two CMS code is almost similar. This article only analysis DayuCMS 0x01. Vulnerability description DayuC...

3.4AI score
Exploits0
securityvulns
securityvulnsadded 2014/10/16 12:0 a.m.61 views

[oCERT-2014-004] Ansible input sanitization errors

2014-004 Ansible input sanitization errors Description: The Ansible project is an open source configuration management platform. The Ansible platform suffers from input sanitization errors that allow arbitrary code execution as well as information leak, in case an attacker is able to control...

1.4AI score0.03742EPSS
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.21 views

Convert-UUlib 1.04/1.05 Perl Module Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13401/info Convert-UUlib Perl module is prone to a remotely exploitable buffer-overflow vulnerability. A remote attacker may leverage this condition to overwrite sensitive program control variables and thus gain control o...

7.1AI score
Exploits0
Rows per page
Query Builder