Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CVE
CVEadded yesterday6 views

CVE-2026-9733

CVE-2026-9733 affects Mojolicious::Plugin::Web::Auth::OAuth2 (Perl) versions up to 0.17. The insecure default state parameter arises from a SHA-1 based generator that uses epoch time (revealed via HTTP Date) and Perl rand, enabling CSRF session hijacking. A patch exists (Mojolicious-Plugin-Web-Au...

9.1CVSS5.4AI score0.00186EPSS
Exploits0References4
EUVD
EUVDadded 2 days ago7 views

EUVD-2026-38339

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation of externally supplied DHCP option data. An adjacent attacker may exploit this vulnerability by supplying crafted DHCP responses, potentially...

8.7CVSS5.9AI score0.004EPSS
Exploits1References7
Cvelist
Cvelistadded 2 days ago29 views

CVE-2026-11834 Unauthenticated Command Injection via DHCP Option Handling in Multiple TP-Link Routers

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation of externally supplied DHCP option data. An adjacent attacker may exploit this vulnerability by supplying crafted DHCP responses, potentially...

8.7CVSS0.004EPSS
Exploits1References7
CVE
CVEadded 2026/05/27 12:57 p.m.21 views

CVE-2026-46049

CVE-2026-46049 concerns the Linux kernel ALSA ctxfi driver (S/PDIF path). The issue arises in spdif_passthru_playback_setup() when pll_rate is not updated (remains 0), causing the MSR calculation loop to spin if 32000 Hz is skipped. The fix adds a fallback: if atc->pll_rate is 0, use atc->r...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVEadded 2025/10/28 10:52 a.m.3 views

CVE-2025-59460

The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections...

7.5CVSS6.9AI score0.0036EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/27 10:10 a.m.6 views

CVE-2025-59460 Unsecure access configuration

The system is deployed in its default state, with configuration settings that do not comply with the latest best practices for restricting access. This increases the risk of unauthorised connections...

7.5CVSS0.0036EPSS
Exploits0References6
CVE
CVEadded 2025/10/27 10:10 a.m.11 views

CVE-2025-59460

Technical details about CVE-2025-59460 are not publicly available in the provided documents. Monitor for updates.

7.5CVSS6.5AI score0.0036EPSS
Exploits0References6Affected Software1
GithubExploit
GithubExploitadded 2025/03/18 2:49 a.m.600 views

Exploit for Use of Hard-coded Credentials in Tp-Link Tl-Wr845N_Firmware

Poc-CVE-2024-57040 CVE-2024-57040 is a security vulnerability...

9.8CVSS9.7AI score0.0105EPSS
Exploits1
CNVD
CNVDadded 2017/06/26 12:0 a.m.3 views

NetApp Clustered Data ONTAP Man-in-the-Middle Attack Vulnerability

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from American NetApp. The system supports users to enhance the performance of enterprise applications and improve data center flexibility and so on. A man-in-the-middle attack vulnerability exists in the default...

7.5CVSS6.8AI score0.00839EPSS
Exploits0References1
Rows per page
Query Builder