Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2025/09/04 10:42 a.m.4 views

CVE-2025-43772

Kaleo Forms Admin in Liferay Portal 7.0.0 through 7.4.3.4, and Liferay DXP 7.4 GA, 7.3 GA through update 27, and older unsupported versions does not restrict the saving of request parameters in the portlet session, which allows remote attackers to consume system memory leading to denial-of-servic...

7.1CVSS0.00569EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2024/06/07 12:0 a.m.1 views

The vulnerability of the MileSight DeviceHub deployment platform, caused by an incorrect path name limitation for accessing the restricted catalog, allows a violator to execute arbitrary code.

The vulnerability of the MileSight DeviceHub deployment platform exists due to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.00572EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2024/06/07 12:0 a.m.2 views

The vulnerability of the MileSight DeviceHub deployment platform, which stems from insufficient validation of input data, allows a violator to trigger a service failure.

The vulnerability of the MileSight DeviceHub deployment platform exists due to insufficient verification of input data. Exploiting this vulnerability could allow a remote attacker to cause service failures...

7.8CVSS5.5AI score0.00146EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2023/01/31 12:0 a.m.2 views

Octopus Server 跨站脚本漏洞

Octopus Server is an automated deployment platform. A security vulnerability exists in Octopus Server. An attacker could exploit the vulnerability to perform cross-site scripting attacks...

5.4CVSS5.4AI score0.00213EPSS
Exploits0References3
CNVD
CNVDadded 2022/11/29 12:0 a.m.14 views

Octopus Server Information Disclosure Vulnerability

Octopus Server is an automated deployment platform. An information disclosure vulnerability exists in Octopus Server versions 2022.2.6729 and later through 2022.2.7965 and 2022.3.348 and later through 2022.3.9163. An attacker can exploit this vulnerability to obtain sensitive information...

7.5CVSS7.2AI score0.00322EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/07/15 12:0 a.m.3 views

Octopus Server 跨站脚本漏洞

Octopus Server is an automated deployment platform. A security vulnerability exists in Octopus Server, which can be exploited by an attacker to add a cross-site scripting payload to a related link...

6.1CVSS6AI score0.00542EPSS
Exploits0References2
CNNVD
CNNVDadded 2021/08/18 12:0 a.m.3 views

Octopus Server 安全漏洞

Octopus Server is an automated deployment platform. A security vulnerability exists in Octopus Server. No information about the vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...

7.5CVSS7.3AI score0.00137EPSS
Exploits0References1
Rows per page
Query Builder