Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/26 7:46 p.m.10 views

EUVD-2026-31974

Uncontrolled Resource Consumption vulnerability in oban-bg obanweb 'Elixir.Oban.Web.CronExpr' modules allows memory exhaustion via unbounded cron range expansion. An attacker with access to schedule cron jobs can submit a malicious cron expression such as "0 0 1-100000000 ". When a user with...

5.9CVSS5.8AI score0.00341EPSS
Exploits0References4
CVE
CVEadded 2025/12/01 9:35 p.m.8 views

CVE-2025-66303

Grav vulnerability CVE-2025-66303: In Grav prior to 1.8.0-beta.27, the admin panel can enter malformed cron-like input in the scheduled_at parameter, e.g., a single quote, causing DoS by corrupting backup.yaml. The issue stems from insufficient sanitization of cron expressions. Recovery requires ...

4.9CVSS6.4AI score0.00333EPSS
Exploits1References2Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-2371

Malware in sbrugna...

10CVSS9.1AI score0.04047EPSS
Exploits1References10
Spring Engineering
Spring Engineeringadded 2024/10/29 12:0 a.m.14 views

This Week in Spring - October 29th, 2024

Hi, Spring fans! How're things? It's almost Halloween! I'm so excited! I'm going as a PHP program. Boooooooo...t. I'm writing this from the amazing Vaadin Create conference in Frankfurt, Germany, about to do my keynote for an amazing, Spring-loving audience here. So, without further ado, let's di...

7.1AI score
Exploits0
Github Security Blog
Github Security Blogadded 2022/05/13 1:50 a.m.34 views

Infinite Loop in Jenkins Core

A Cron expression form validation could enter infinite loop, potentially resulting in denial of service. The form validation for cron expressions e.g. "Poll SCM", "Build periodically" could enter infinite loops when cron expressions only matching certain rare dates were entered, blocking request...

6.5CVSS0.9AI score0.0117EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2021/11/15 12:0 a.m.2 views

Cron Utils 代码注入漏洞

Cron Utils is Jmrozanec individual developers of a Java code base for validating , parsing , migrating Cron expressions . A code injection vulnerability exists in Cron Utils that allows an attacker to inject arbitrary Java EL expressions to execute remote code...

10CVSS8.9AI score0.04047EPSS
Exploits1References10
Veracode
Veracodeadded 2020/12/04 12:52 a.m.31 views

Template Injection

cron-utils is vulnerable to a template Injection vulnerability. The use of cron-utils with @Cron annotation allows an attacker to inject malicious Java EL expressions as it does not properly validate the untrusted Cron expressions, leading to a remote code execution...

8.1CVSS4.1AI score0.04204EPSS
Exploits1References23Affected Software1
CNNVD
CNNVDadded 2020/11/24 12:0 a.m.4 views

Cron Utils Injection Vulnerability

Cron Utils is a Java codebase for authenticating, parsing, and migrating Cron expressions from the individual developers at Jmrozanec. An injection vulnerability exists in Cron-utils versions prior to 9.1.3, which can be exploited by an attacker to be able to inject arbitrary Java EL expressions,...

8.1CVSS6.9AI score0.04204EPSS
Exploits1References19
Rows per page
Query Builder