Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Jenkins Security Advisories
Jenkins Security Advisoriesadded 3 days ago4 views

CSRF vulnerability and missing permission check in contrast-continuous-application-security

contrast-continuous-application-security 3.11 and earlier does not perform a permission check in an HTTP endpoint that tests the connection to a Contrast TeamServer. This allows attackers with Overall/Read permission to connect to an attacker-specified URL using an attacker-specified username, AP...

5.4CVSS5.8AI score0.00187EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/06/05 7:31 p.m.10 views

CVE-2026-6709

The Coinbase Commerce for Contact Form 7 plugin for WordPress is vulnerable to Missing Authorization in versions up to and including 1.1.2. This is due to a missing capability check and missing nonce verification in the savesettings function, which is registered on the adminpostcccf7savesettings...

4.3CVSS5.5AI score0.00208EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-9300

Malware in sbrugna...

4.9CVSS5.2AI score0.01158EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/07/09 12:0 a.m.4 views

Jenkins plugin Nouvola DiveCloud 安全漏洞

Jenkins and Jenkins plugin are both Jenkins open source products.Jenkins is an application software. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins plugin is an application software plugin. Jenkins plugin...

6.5CVSS6.1AI score0.00175EPSS
Exploits0References2
OSV
OSVadded 2024/10/25 6:15 a.m.1 views

CVE-2024-9109

The WooCommerce UPS Shipping – Live Rates and Access Points plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deleteoauthdata function in all versions up to, and including, 2.3.11. This makes it possible for authenticated attackers,...

4.3CVSS5.8AI score
Exploits0References3
OSV
OSVadded 2019/12/20 4:15 p.m.5 views

CVE-2019-19691

A vulnerability in Trend Micro Apex One and OfficeScan XG could allow an attacker to expose a masked credential key by manipulating page elements using development tools. Note that the attacker must already have admin/root privileges on the product console to exploit this vulnerability...

4.9CVSS5.8AI score0.01158EPSS
Exploits0References1
Cvelist
Cvelistadded 2019/12/20 4:5 a.m.28 views

CVE-2019-19691

A vulnerability in Trend Micro Apex One and OfficeScan XG could allow an attacker to expose a masked credential key by manipulating page elements using development tools. Note that the attacker must already have admin/root privileges on the product console to exploit this vulnerability...

5.1AI score0.01158EPSS
Exploits0References1
CVE
CVEadded 2019/12/20 4:5 a.m.51 views

CVE-2019-19691

The CVE-2019-19691 vulnerability affects Trend Micro Apex One and OfficeScan XG, enabling an information-disclosure of a masked credential key by manipulating page elements with development tools. The attacker must already possess admin/root privileges on the product console to exploit this. Mult...

4.9CVSS5AI score0.01158EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder