Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/04 12:0 a.m.7 views

SUSE SLED15 / SLES15 Security Update : python-tornado (SUSE-SU-2026:1171-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:1171-1 advisory. - CVE-2026-31958: parsing large multipart bodies with many parts can cause a denial of service bsc1259553. - incomplete...

8.7CVSS6AI score0.00375EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2026/04/01 12:0 a.m.8 views

Amazon Linux 2 : python, --advisory ALAS2-2026-3218 (ALAS-2026-3218)

The version of python installed on the remote host is prior to 2.7.18-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3218 advisory. The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update, |=...

7.5CVSS5.9AI score0.00621EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2016-1409

Malware in sbrugna...

7.2CVSS7AI score0.01165EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:45 a.m.5 views

CVE-2023-26770

TaskCafe 0.3.2 lacks validation in the Cookie value. Any unauthenticated attacker who knows a registered UserID can change the password of that user...

9.8CVSS7.2AI score0.00703EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:23 a.m.7 views

CVE-2018-11772

Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node if any was previously selected in the privilege tree. The cookie data is then used in an SQL statement. This allows for an SQL injection attack. Access to this portion of a VCL system requires adm...

7.2CVSS8AI score0.01356EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/06/19 12:0 a.m.5 views

PT-2020-5644

Name of the Vulnerable Software and Affected Versions rack versions prior to 2.2.3 rack versions prior to 2.1.4 Description A security issue exists due to a reliance on cookies without proper validation or integrity checks, making it possible for an attacker to forge a secure or host-only cookie...

10CVSS7.2AI score0.99856EPSS
Exploits66References198
Hacker One
Hacker Oneadded 2018/12/10 7:19 a.m.108 views

Semrush: User Controllable Cookie

NOTE! Thanks for submitting a report! Please replace all the square sections below with the pertinent details. Remember, the more detail you provide, the easier it is for us to verify and then potentially issue a bounty, so be sure to take your time filling out the report! User Controllable Cooki...

6.7AI score
Exploits0
exploitpack
exploitpackadded 2003/10/18 12:0 a.m.11 views

GoldLink 3.0 - Cookie SQL Injection

GoldLink 3.0 - Cookie SQL Injection source: https://www.securityfocus.com/bid/8847/info GoldLink is prone to SQL injection attacks. This is due to insufficient validation of values supplied via cookies. As a result, it may be possible to manipulate SQL queries, potentially resulting in informatio...

0.6AI score
Exploits0
Rows per page
Query Builder