Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2025/07/30 12:0 a.m.3 views

CVE-2025-25692

A PHAR deserialization vulnerability in the getHeaders function of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a crafted POST request...

7.4AI score0.00747EPSS
Exploits1References3
CVE
CVEadded 2025/07/08 4:57 p.m.58 views

CVE-2025-49735

CVE-2025-49735 describes a use-after-free vulnerability in Windows KDC Proxy Service (KPSSVC) that could allow remote code execution over the network. The entry is publicly tracked with a Network attack vector, high impact on confidentiality, integrity, and availability (CVSS v3.1 base score 8.1)...

8.1CVSS7.3AI score0.00904EPSS
Exploits0References1Affected Software6
RedhatCVE
RedhatCVEadded 2025/05/22 7:52 p.m.5 views

CVE-2021-34908

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.8AI score0.00621EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/04 12:40 a.m.5 views

CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

9.8CVSS8.2AI score0.06129EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/03/12 12:0 a.m.8 views

CVE-2025-26260

Plenti = 0.7.16 is vulnerable to code execution. Users uploading '.svelte' files with the /postLocal endpoint can define the file name as javascript codes. The server executes the uploaded file name in host, and cause code execution...

6.8AI score0.00753EPSS
Exploits1References4
NVD
NVDadded 2025/01/27 6:15 p.m.8 views

CVE-2025-24364

vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwardenrs. Attacker with authenticated access to the vaultwarden admin panel can execute arbitrary code in the system. The attacker could then change some settings to use sendmail as mail agent but adjus...

7.2CVSS0.00989EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/02/13 6:2 p.m.10 views

CVE-2024-21365 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

8.8CVSS7.2AI score0.0192EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/03/29 12:0 a.m.5 views

CVE-2022-28318

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS8AI score0.00285EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/03/28 12:0 a.m.6 views

CVE-2022-24973

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link TL-WR940N 3.20.1 Build 200316 Rel.34392n 5553 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on...

6.8CVSS8.1AI score0.00518EPSS
Exploits0References1
Rows per page
Query Builder