Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

163 matches found

Nuclei
Nucleiadded 3 days ago44 views

D-Link D-View 8 v2.0.1.28 - Authentication Bypass

Use of a static key to protect a JWT token used in user authentication can allow an for an authentication bypass in D-Link D-View 8 v2.0.1.28 id: CVE-2023-5074 info: name: D-Link D-View 8 v2.0.1.28 - Authentication Bypass author: DhiyaneshDK severity: critical description: | Use of a static key t...

9.8CVSS7AI score0.91502EPSS
Exploits1References4
OSV
OSVadded 2026/01/21 6:16 p.m.0 views

CVE-2026-23755

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

7.3CVSS6.1AI score
Exploits0References2
NVD
NVDadded 2026/01/21 6:16 p.m.1 views

CVE-2026-23755

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS0.00025EPSS
Exploits0References2
OSV
OSVadded 2026/01/21 6:16 p.m.0 views

CVE-2026-23754

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary userid value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credentia...

8.8CVSS5.9AI score
Exploits0References2
NVD
NVDadded 2026/01/21 6:16 p.m.1 views

CVE-2026-23754

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary userid value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credentia...

8.8CVSS0.00053EPSS
Exploits0References2
CVE
CVEadded 2026/01/21 6:2 p.m.9 views

CVE-2026-23754

CVE-2026-23754 affects D-Link D-View 8, versions 2.0.1.107 and earlier. The Red Hat, CIRCL, NVD, and CVE listings describe an improper access control vulnerability in backend API endpoints: any authenticated user can supply an arbitrary user_id to retrieve sensitive credential data belonging to o...

8.8CVSS5.7AI score0.00053EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/21 6:2 p.m.3 views

CVE-2026-23754 D-Link D-View 8 IDOR Allows Credential Disclosure and Account Takeover

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary userid value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credentia...

8.7CVSS5.7AI score0.00053EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/01/21 6:2 p.m.12 views

CVE-2026-23754 D-Link D-View 8 IDOR Allows Credential Disclosure and Account Takeover

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary userid value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credentia...

8.7CVSS0.00053EPSS
Exploits0References2
EUVD
EUVDadded 2026/01/21 6:2 p.m.4 views

EUVD-2026-3605

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary userid value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credentia...

8.7CVSS5.7AI score0.00053EPSS
Exploits0References3
CVE
CVEadded 2026/01/21 6:2 p.m.9 views

CVE-2026-23755

CVE-2026-23755 affects D-Link D-View 8 installer, versions 2.0.1.107 and below. The vulnerability is an uncontrolled search path leading to DLL preloading: during installation, the process loads version.dll from its execution directory when run with elevated privileges via UAC, enabling attacker-...

8.4CVSS5.8AI score0.00025EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/21 6:2 p.m.1 views

CVE-2026-23755 D-Link D-View 8 Installer DLL Preloading via Uncontrolled Search Path

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS5.8AI score0.00025EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/21 6:2 p.m.2 views

CVE-2026-23755

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS5.9AI score0.00025EPSS
Exploits0References3
EUVD
EUVDadded 2026/01/21 6:2 p.m.1 views

EUVD-2026-3606

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS5.8AI score0.00025EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/01/21 12:0 a.m.1 views

D-Link D-View 8 security vulnerability

D-Link D-View 8 is a comprehensive network management software developed by D-Link Corporation. Versions of D-Link D-View 8 2.0.1.107 and earlier contained security vulnerabilities. These vulnerabilities were caused by improper access control at the backend API endpoints, which could allow any...

8.8CVSS5.8AI score0.00053EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.2 views

PT-2026-3843

D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in the installer. When executed with elevated privileges via UAC, the installer attempts to load version.dll from its execution directory, allowing DLL preloading. An attacker can supply a malicious...

8.4CVSS5.8AI score0.00025EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/01/21 12:0 a.m.4 views

PT-2026-3842

D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in backend API endpoints. Any authenticated user can supply an arbitrary user id value to retrieve sensitive credential data belonging to other users, including super administrators. The exposed credenti...

8.7CVSS5.7AI score0.00053EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-48751

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.0102EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-46533

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00828EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2024-46535

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.04097EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-46532

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.014EPSS
Exploits0References1
Rows per page
Query Builder