Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded yesterday5 views

CVE-2026-6678

CVE-2026-6678 : Integer underflow in the wolfSSL function wc_PKCS7_DecryptOri when handling crafted Other Recipient Info , causing incorrect length handling during decryption. The issue is described in the connected sources as a vulnerability in the PKCS7 decryption path; no versions, affected pr...

1CVSS5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/06/04 12:0 a.m.12 views

Ubuntu 24.04 LTS : age vulnerability (USN-8372-1)

The remote Ubuntu 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8372-1 advisory. It was discovered that age did not properly validate plugin names. An attacker could possibly use this issue to cause execution of an arbitrary program by supplyi...

9.8CVSS6.1AI score0.00472EPSS
Exploits0References2
OSV
OSVadded 2026/06/02 4:24 p.m.9 views

USN-8372-1 age vulnerability

It was discovered that age did not properly validate plugin names. An attacker could possibly use this issue to cause execution of an arbitrary program by supplying a crafted recipient or identity string...

9.8CVSS5.9AI score0.00472EPSS
Exploits0References2
OSV
OSVadded 2021/05/10 7:16 p.m.0 views

GHSA-48WW-J4FC-435P Command injection in nodemailer

This affects the package nodemailer before 6.4.16. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport for sending mails...

9.8CVSS5.9AI score0.02316EPSS
Exploits1References7
UbuntuCve
UbuntuCveadded 2021/05/04 1:30 p.m.60 views

CVE-2020-28008

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory owned by a non-root user, an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution...

7.8CVSS7.1AI score0.00407EPSS
Exploits3References3
OSV
OSVadded 2021/05/04 1:30 p.m.0 views

UBUNTU-CVE-2020-28008

Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory owned by a non-root user, an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution...

7.8CVSS7.1AI score0.00407EPSS
Exploits3References4
CNVD
CNVDadded 2020/11/19 12:0 a.m.3 views

Nodemailer Injection Vulnerability

Nodemailer is the Nodemailer team of a use can provide the ability to send e-mail JS code library . An injection vulnerability exists in versions of nodemailer prior to 6.4.16, which stems from the fact that the use of a carefully crafted recipient email address may result in arbitrary command fl...

9.8CVSS7.8AI score0.02316EPSS
Exploits1References1
NVD
NVDadded 2020/11/12 9:15 a.m.16 views

CVE-2020-7769

This affects the package nodemailer before 6.4.16. Use of crafted recipient email addresses may result in arbitrary command flag injection in sendmail transport for sending mails...

9.8CVSS9.6AI score0.02316EPSS
Exploits1References4
Rows per page
Query Builder