Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Imperva Blog
Imperva Blogadded 2026/04/30 5:38 p.m.5 views

Imperva Customers Protected Against CVE-2026-41940 in cPanel & WHM

What is CVE-2026-41940? CVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel & WHM, including DNSOnly, in versions after 11.40. The flaw, discovered by WatchTowr Labs, exists in the login flow and allows unauthenticated remote attackers to gain unauthorized access to...

9.8CVSS6.2AI score0.90762EPSS
Exploits61
CVE
CVEadded 2026/01/22 10:1 p.m.11 views

CVE-2026-24058

Soft Serve (github.com/charmbracelet/soft-serve) is affected by a critical authentication bypass vulnerability in versions

9.8CVSS5.6AI score0.00053EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.4 views

PT-2026-4297

Name of the Vulnerable Software and Affected Versions Soft Serve versions 0.11.2 and below Description Soft Serve, a self-hostable Git server, contains a critical flaw that allows an attacker to impersonate any user, including administrators. This is achieved by presenting the victim's public key...

9.3CVSS5.4AI score0.00053EPSS
Exploits0References11
RedhatCVE
RedhatCVEadded 2025/11/17 7:3 a.m.3 views

CVE-2025-58083

General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely reset the device...

10CVSS7AI score0.00082EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-1230

Malware in sbrugna...

9.8CVSS7.7AI score0.00386EPSS
Exploits0References4
OSV
OSVadded 2025/09/22 5:16 p.m.0 views

CVE-2025-57434

Creacast Creabox Manager contains a critical authentication flaw that allows an attacker to bypass login validation. The system grants access when the username is creabox and the password begins with the string creacast, regardless of what follows...

8.8CVSS5.8AI score0.00089EPSS
Exploits1References2
NVD
NVDadded 2025/06/10 1:15 a.m.6 views

CVE-2025-5906

A vulnerability classified as critical has been found in code-projects Laundry System 1.0. This affects an unknown part of the file /data/. The manipulation leads to missing authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...

9.8CVSS0.00803EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/29 3:48 p.m.6 views

CVE-2025-5247

A vulnerability, which was classified as critical, has been found in Gowabby HFish 0.1. This issue affects the function LoadUrl of the file \view\url.go. The manipulation of the argument r leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to th...

7.5CVSS7AI score0.00221EPSS
Exploits0References1
CVE
CVEadded 2025/05/25 1:0 p.m.55 views

CVE-2025-5149

CVE-2025-5149 affects WCMS up to version 8.3.11, specifically the Login component’s getMemberByUid function in /index.php?articleadmin/getallcon. The vulnerability stems from manipulating the uid parameter, causing improper authentication. Attacks can be launched remotely with high attack complex...

8.1CVSS5.6AI score0.00869EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2024/05/03 3:16 a.m.13 views

CVE-2023-50199

D-Link G416 httpd Missing Authentication for Critical Function Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link G416 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.4AI score0.00578EPSS
Exploits0References2
Rows per page
Query Builder