Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/02/11 12:0 a.m.4 views

PJSIP 安全漏洞

PJSIP is an open-source, free and open-source multimedia communication library developed in C language. It implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. PJSIP versions 2.16 and earlier contained security vulnerabilities, which stemmed from buffer overflows when...

9.8CVSS7.4AI score0.01927EPSS
Exploits3References4
Snyk
Snykadded 2026/01/14 10:49 a.m.3 views

External Control of File Name or Path

Overview kibana is an open source Apache Licensed, browser-based analytics and search dashboard for Elasticsearch. Affected versions of this package are vulnerable to External Control of File Name or Path via the processing of JSON credentials in the Google Gemini connector configuration. An...

8.6CVSS6.9AI score0.00306EPSS
Exploits1References3
Snyk
Snykadded 2025/12/11 4:48 p.m.1 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via the evaluation of credential values in non-POSIX shell environments. An attacker can execute arbitrary commands on the operator's device by crafting malicious credential values in infrastructure Secret...

8CVSS7.9AI score0.00204EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2023/10/09 12:0 a.m.3 views

The vulnerability of the Jenkins NodeJS plugin, related to errors in processing user credentials in the build log, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Jenkins NodeJS plugin is related to errors in processing user credentials in the build log. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

7.8CVSS7.2AI score0.0053EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2023/05/31 12:0 a.m.3 views

The vulnerability of the Teacher Console component in the Faronics Insight computer network management platform allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Teacher Console component in the Faronics Insight computer network management platform is related to the unencrypted storage of user credentials during the processing of consoleSettings. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...

4CVSS5.5AI score0.00319EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTECadded 2022/07/15 12:0 a.m.3 views

The vulnerability in the implementation of the CORS (Cross-Origin Resource Sharing) mechanism in Firefox browsers, Firefox ESR, and the Thunderbird email client allows a perpetrator to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the CORS Cross-Origin Resource Sharing mechanism implementation in Firefox browsers, Firefox ESR, and the Thunderbird email client is related to the inclusion of functions from an unreliable controlled domain during the processing of the Access-Control-Allow-Credentials heade...

6.4CVSS6.8AI score0.00594EPSS
Exploits0References16Affected Software11
Rows per page
Query Builder