Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19139 matches found

VulnCheck KEV
VulnCheck KEVadded 2026/02/25 12:0 a.m.7 views

VulnCheck KEV: CVE-2026-20127

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected syste...

10CVSS5.9AI score0.57793EPSS
In wildExploits9References15
CISA KEV Catalog
CISA KEV Catalogadded 2026/02/25 12:0 a.m.12 views

Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability

Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, contain an authentication bypass vulnerability could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected system...

10CVSS5.8AI score0.57793EPSS
In wildExploits9
RedhatCVE
RedhatCVEadded 2026/02/24 1:33 p.m.6 views

CVE-2026-2978

A vulnerability was detected in FastApiAdmin up to 2.2.0. This vulnerability affects the function uploadfilecontroller of the file /backend/app/api/v1/modulesystem/params/controller.py of the component Scheduled Task API. Performing a manipulation results in unrestricted upload. The attack can be...

8.8CVSS5.2AI score0.00345EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2026/02/24 9:58 a.m.17 views

Important: Red Hat Security Advisory: RHTAS - Tech Preview Release Of the Policy Controller Operator

The Tech Preview release of the RHTAS Policy Controller Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Policy Controller Operator can be used with OpenShift Container Platform 4.16, 4.17,...

7.5CVSS6.6AI score0.00761EPSS
Exploits2References4
RedhatCVE
RedhatCVEadded 2026/02/24 7:30 a.m.6 views

CVE-2026-2977

A security vulnerability has been detected in FastApiAdmin up to 2.2.0. This affects the function uploadcontroller of the file /backend/app/api/v1/modulecommon/file/controller.py of the component Scheduled Task API. Such manipulation leads to unrestricted upload. It is possible to launch the atta...

8.8CVSS6AI score0.00293EPSS
Exploits1References1
NVD
NVDadded 2026/02/24 2:16 a.m.9 views

CVE-2026-3052

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

7.7CVSS0.00298EPSS
Exploits1References5
OSV
OSVadded 2026/02/24 2:16 a.m.3 views

CVE-2026-3052

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

7.7CVSS5.4AI score
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/02/24 1:44 a.m.7 views

CVE-2026-2957

A weakness has been identified in qinming99 dst-admin up to 1.5.0. This impacts the function deleteBackup of the file src/main/java/com/tugos/dst/admin/controller/BackupController.java of the component File Handler. This manipulation causes denial of service. The attack may be initiated remotely...

8.1CVSS5.5AI score0.00371EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/02/24 1:32 a.m.2 views

CVE-2026-3052

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

6.5CVSS5.2AI score0.00298EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/24 1:32 a.m.2 views

CVE-2026-3052 DataLinkDC dinky Flink Proxy Controller FlinkProxyController.java proxyUba server-side request forgery

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

6.5CVSS5.5AI score0.00298EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/24 1:32 a.m.23 views

CVE-2026-3052 DataLinkDC dinky Flink Proxy Controller FlinkProxyController.java proxyUba server-side request forgery

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

6.5CVSS0.00298EPSS
Exploits1References5
CVE
CVEadded 2026/02/24 1:32 a.m.15 views

CVE-2026-3052

DataLinkDC dinky up to 1.2.5 is affected. The vulnerable component is the Flink Proxy Controller (dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java) and its proxyUba function. The issue enables server-side request forgery (SSRF) and is exploitable remotely. The exploit has ...

7.7CVSS6.3AI score0.00298EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/02/24 1:32 a.m.4 views

EUVD-2026-7433

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

6.5CVSS6.1AI score0.00298EPSS
Exploits1References5
ICS
ICSadded 2026/02/24 12:30 a.m.8 views

ABB AC500 V3 Multiple Vulnerabilities

SUMMARY ABB became aware of severe vulnerability in the products versions listed as affected in the advisory. An update is available that resolves these vulnerabilities. An attacker who successfully exploited these vulnerabilities could bypass the user management and read visualization files...

8.3CVSS6.1AI score0.00501EPSS
Exploits0References13
Positive Technologies
Positive Technologiesadded 2026/02/24 12:0 a.m.6 views

PT-2026-21638

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

6.5CVSS6.2AI score0.00298EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/02/23 9:32 p.m.7 views

CVE-2026-3028

A vulnerability was determined in erzhongxmu JEEWMS up to 3.7. This vulnerability affects the function doAdd of the file src/main/java/com/jeecg/demo/controller/JeecgListDemoController.java. This manipulation of the argument Name causes cross site scripting. The attack may be initiated remotely...

5.3CVSS3.9AI score0.00308EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/02/23 9:32 p.m.24 views

CVE-2026-3028 erzhongxmu JEEWMS JeecgListDemoController.java doAdd cross site scripting

A vulnerability was determined in erzhongxmu JEEWMS up to 3.7. This vulnerability affects the function doAdd of the file src/main/java/com/jeecg/demo/controller/JeecgListDemoController.java. This manipulation of the argument Name causes cross site scripting. The attack may be initiated remotely...

5.3CVSS0.00308EPSS
Exploits1References4
CVE
CVEadded 2026/02/23 9:32 p.m.11 views

CVE-2026-3028

CVE-2026-3028 affects erzhongxmu JEEWMS up to 3.7. The vulnerability impacts function doAdd in src/main/java/com/jeecg/demo/controller/JeecgListDemoController.java, where an argument named Name can be manipulated to trigger cross-site scripting. The issue can be remotely exploited; public exploit...

6.1CVSS3.8AI score0.00308EPSS
Exploits1References4Affected Software1
RedHat Linux
RedHat Linuxadded 2026/02/23 3:20 p.m.1 views

kernel: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
OSV
OSVadded 2026/02/23 8:16 a.m.2 views

CVE-2026-2978

A vulnerability was detected in FastApiAdmin up to 2.2.0. This vulnerability affects the function uploadfilecontroller of the file /backend/app/api/v1/modulesystem/params/controller.py of the component Scheduled Task API. Performing a manipulation results in unrestricted upload. The attack can be...

8.8CVSS5.5AI score0.00345EPSS
Exploits1References4
Rows per page
Query Builder