Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Cvelist
Cvelistadded 2025/08/27 10:25 a.m.4 views

CVE-2025-30064 Possibility to generate a session for any user via the "ex:action" parameter after obtaining access to the JWT key

An insufficiently secured internal function allows session generation for arbitrary users. The decodeParam function checks the JWT but does not verify which signing algorithm was used. As a result, an attacker can use the "ex:action" parameter in the VerifyUserByThrustedService function to genera...

8.8CVSS0.00013EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/05/16 12:0 a.m.1 views

Glazed Lists 代码问题漏洞

Glazed Lists is Glazed Lists open source an open source list conversion for Java. A security vulnerability exists in Glazed Lists v1.11.0. An attacker exploiting this vulnerability can execute arbitrary code via the BeanXMLByteCoder.decode parameter...

9.8CVSS8.7AI score0.00516EPSS
Exploits1References2
0day.today
0day.todayadded 2006/01/15 12:0 a.m.50 views

MS Windows Metafile (WMF) Remote File Download Exploit Generator

Exploit for unknown platform in category remote exploits ================================================================ MS Windows Metafile WMF Remote File Download Exploit Generator ================================================================ / \ / WMF nDay download Exploit Generator \ by...

7.1AI score
Exploits0
Rows per page
Query Builder