Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2026/02/11 8:26 a.m.1 views

CVE-2026-1786 Twitter posts to Blog <= 1.11.25 - Missing Authorization to Unauthenticated Plugin Settings Update

The Twitter posts to Blog plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'dgtwoptions' function in all versions up to, and including, 1.11.25. This makes it possible for unauthenticated attackers to update plugin settings including...

6.5CVSS5.5AI score0.00042EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/12/12 3:20 a.m.24 views

CVE-2025-14165 Kirim.Email WooCommerce Integration <= 1.2.9 - Cross-Site Request Forgery to Settings Update

The Kirim.Email WooCommerce Integration plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.9. This is due to missing nonce validation on the plugin's settings page. This makes it possible for unauthenticated attackers to modify the plugin's...

4.3CVSS0.00015EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2017-18003

Malware in sbrugna...

8.8CVSS8.6AI score0.01257EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2025/06/19 12:0 a.m.2 views

PT-2025-26223

Name of the Vulnerable Software and Affected Versions RabbitMQ versions 3.13.7 and prior Description The issue concerns RabbitMQ logging authorization headers in plaintext, encoded in base64, when queried with HTTP/s and basic authentication. This results in logs containing all request headers,...

6.7CVSS6.9AI score0.00062EPSS
Exploits1References16
Positive Technologies
Positive Technologiesadded 2025/03/20 12:0 a.m.3 views

PT-2025-12096 · Unknown · Automatic1111/Stable-Diffusion-Webui

Name of the Vulnerable Software and Affected Versions: automatic1111/stable-diffusion-webui version 1.10.0 Description: An open redirect vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a...

6.1CVSS6.1AI score0.01047EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2023/08/29 12:0 a.m.1 views

PT-2023-23842 · Tenable · Nessus

Name of the Vulnerable Software and Affected Versions: Nessus versions prior to 10.6.0 Description: A pass-back vulnerability exists where an authenticated, remote attacker with administrator privileges could uncover stored SMTP credentials within the Nessus application. Recommendations: For...

4.9CVSS5.6AI score0.00197EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/06/24 12:43 p.m.1 views

openstack-keystone: Credentials endpoint policy logic allows changing credential owner and target project ID

A vulnerability was found in Keystone's EC2 credentials API. This flaw allows any authenticated user to create an EC2 credential for themselves for a project that they have a specified role, and then perform an update to the credential user and project, allowing them to masquerade as another user...

8.8CVSS7.1AI score0.03566EPSS
Exploits0References5
Veeam
Veeamadded 2013/08/13 12:0 a.m.20 views

How to Migrate Veeam ONE Deployment

Purpose This article documents the procedure for migrating Veeam ONE to a different machine. This can be useful if: The machine where Veeam ONE is currently installed runs an OS that is no longer supported by the version of Veeam ONE you plan to upgrade to. Your existing Veeam ONE deployment shar...

6.8AI score
Exploits0Affected Software1
Rows per page
Query Builder