Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1001 matches found

Cvelist
Cvelistadded 2024/12/16 12:0 a.m.15 views

CVE-2024-55554

Intrexx Portal Server before 12.0.2 allows XSS via a user-defined portlet...

0.00213EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2024/12/12 12:0 a.m.3 views

CVE-2024-50143

...

7.8CVSS7.3AI score0.00268EPSS
Exploits0
BDU FSTEC
BDU FSTECadded 2024/12/11 12:0 a.m.2 views

The vulnerability of the Drupal CMS system’s kernel lies in the insufficient control over the modification of dynamically defined object properties. This allows attackers to delete any file they desire.

The vulnerability of the Drupal CMS system’s kernel is related to insufficient control over the modification of dynamically defined object properties. Exploiting this vulnerability could allow a malicious actor to delete any file at will...

10CVSS5.4AI score0.00904EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2024/12/09 9:11 p.m.13 views

CVE-2024-55601

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.139.4, some HTML attributes in Markdown in the internal templates listed below not escaped in internal render hooks. Those whoa re impacted are Hugo users who do not trust their Markdown content files and are usin...

5.3CVSS5.8AI score0.00563EPSS
Exploits0
OSV
OSVadded 2024/12/09 8:44 p.m.11 views

GHSA-C2XF-9V2R-R2RX Hugo does not escape some attributes in internal templates

Impact Some HTML attributes in Markdown in the internal templates listed below not escaped. Impacted are Hugo users who do not trust their Markdown content files and are using one or more of these templates. default/markup/render-link.html from v0.123.0 default/markup/render-image.html from...

5.3CVSS5.3AI score0.00563EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2024/10/30 2:25 p.m.34 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, & Bug Fix Update

Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container...

9.8CVSS6.8AI score0.02139EPSS
Exploits5References130
SUSE CVE
SUSE CVEadded 2024/10/19 10:37 a.m.3 views

SUSE CVE-2023-26785

MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...

9.8CVSS8.7AI score0.02098EPSS
Exploits2References3
ATTACKERKB
ATTACKERKBadded 2024/10/17 10:15 p.m.4 views

CVE-2023-26785

MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...

9.8CVSS6.7AI score0.02098EPSS
Exploits2References3
OSV
OSVadded 2024/10/17 10:15 p.m.1 views

UBUNTU-CVE-2023-26785

MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...

9.8CVSS6.4AI score0.02098EPSS
Exploits2References3
RedHat Linux
RedHat Linuxadded 2024/10/07 12:50 p.m.30 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.12 security, enhancement & bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.13.12 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation...

6CVSS6.7AI score0.00355EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2024/10/03 11:22 a.m.28 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.11 security and bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.14.11 on Red Hat Enterprise Linux 9 from Red Hat Container Registry. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation...

7.5CVSS6.7AI score0.00828EPSS
Exploits1References6
OSV
OSVadded 2024/09/26 6:15 p.m.5 views

CVE-2024-47127

In the goTenna Pro App there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or if the...

3.1CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/09/26 6:15 p.m.14 views

CVE-2024-47127

In the goTenna Pro App there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or if the...

6.5CVSS0.00112EPSS
Exploits0References1
OSV
OSVadded 2024/09/26 6:15 p.m.6 views

CVE-2024-41722

In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or ...

6.5CVSS5.8AI score0.00146EPSS
Exploits0References1
NVD
NVDadded 2024/09/26 6:15 p.m.13 views

CVE-2024-41722

In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or ...

6.5CVSS0.00146EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/09/26 5:39 p.m.19 views

CVE-2024-41722 goTenna Pro ATAK Plugin Weak Authentication

In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or ...

6.5CVSS0.00146EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/09/26 5:39 p.m.12 views

CVE-2024-41722 goTenna Pro ATAK Plugin Weak Authentication

In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or ...

6.5CVSS6.4AI score0.00146EPSS
Exploits0References1
CVE
CVEadded 2024/09/26 5:39 p.m.51 views

CVE-2024-41722

CVE-2024-41722 affects goTenna Pro ATAK Plugin (versions up to 1.9.12). A vulnerability allows injecting arbitrary messages with any GID and Callsign via a software-defined radio within existing goTenna mesh networks, exploitable in unencrypted environments or where cryptography is compromised. I...

6.5CVSS6.4AI score0.00146EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/09/26 5:27 p.m.22 views

CVE-2024-47127 Weak Authentication in goTenna Pro

In the goTenna Pro App there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being used in an unencrypted environment or if the...

6.5CVSS5.4AI score0.00112EPSS
Exploits0References1
CVE
CVEadded 2024/09/26 5:27 p.m.52 views

CVE-2024-47127

CVE-2024-47127 affects goTenna Pro App (and Pro X/Pro X2 ecosystems). A vulnerability described across connected documents allows injecting arbitrary messages with any GID/Callsign into existing goTenna mesh networks via a software-defined radio, applicable when encryption is absent or cryptograp...

6.5CVSS5.4AI score0.00112EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder