Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

189 matches found

RedhatCVE
RedhatCVEadded 2025/05/04 8:58 p.m.10 views

CVE-2025-4215

A vulnerability was found in gorhill uBlock Origin up to 1.63.3b16. It has been classified as problematic. Affected is the function currentStateChanged of the file src/js/1p-filters.js of the component UI. The manipulation leads to inefficient regular expression complexity. It is possible to laun...

3.1CVSS6.9AI score0.0134EPSS
Exploits1References8
Debian CVE
Debian CVEadded 2025/05/02 8:31 p.m.8 views

CVE-2025-4215

A vulnerability was found in gorhill uBlock Origin up to 1.63.3b16. It has been classified as problematic. Affected is the function currentStateChanged of the file src/js/1p-filters.js of the component UI. The manipulation leads to inefficient regular expression complexity. It is possible to laun...

3.7CVSS3AI score0.0134EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/04/30 7:11 p.m.6 views

CVE-2025-4032

A vulnerability was found in inclusionAI AWorld up to 8c257626e648d98d793dd9a1a950c2af4dd84c4e. It has been rated as critical. This issue affects the function subprocess.run/subprocess.Popen of the file AWorld/aworld/virtualenvironments/terminals/shelltool.py. The manipulation leads to os command...

8.1CVSS7.2AI score0.03079EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/04/28 10:10 p.m.15 views

CVE-2025-3954

A vulnerability, which was classified as problematic, has been found in ChurchCRM 5.16.0. Affected by this issue is some unknown functionality of the component Referer Handler. The manipulation leads to server-side request forgery. The attack may be launched remotely. The complexity of an attack ...

6.3CVSS6.7AI score0.00134EPSS
Exploits1References1
NVD
NVDadded 2025/04/26 10:15 p.m.14 views

CVE-2025-3954

A vulnerability, which was classified as problematic, has been found in ChurchCRM 5.16.0. Affected by this issue is some unknown functionality of the component Referer Handler. The manipulation leads to server-side request forgery. The attack may be launched remotely. The complexity of an attack ...

6.3CVSS0.00134EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/04/26 9:31 p.m.8 views

CVE-2025-3954 ChurchCRM Referer server-side request forgery

A vulnerability, which was classified as problematic, has been found in ChurchCRM 5.16.0. Affected by this issue is some unknown functionality of the component Referer Handler. The manipulation leads to server-side request forgery. The attack may be launched remotely. The complexity of an attack ...

6.3CVSS4.1AI score0.00134EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/03/12 11:32 a.m.5 views

CVE-2025-2129

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

6.3CVSS7.1AI score0.07314EPSS
Exploits1References1
CVE
CVEadded 2025/03/10 12:31 p.m.73 views

CVE-2025-2149

CVE-2025-2149 affects PyTorch 2.6.0+cu124, specifically the Quantized Sigmoid Module’s nnq_Sigmoid func. The issue stems from improper initialization caused by manipulation of scale/zero_point, enabling a local attack with high attack complexity; exploitation has been disclosed. Connected IBM adv...

2.5CVSS7AI score0.00051EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/03/09 8:0 p.m.14 views

CVE-2025-2129 Mage AI insecure default initialization of resource

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

6.3CVSS7.1AI score0.07314EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/02/17 4:31 a.m.11 views

CVE-2025-1376 GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elfstrptr in the library /libelf/elfstrptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The...

2.5CVSS0.0001EPSS
Exploits1References7
CVE
CVEadded 2025/02/16 2:31 p.m.56 views

CVE-2025-1352

CVE-2025-1352 concerns GNU elfutils 0.192. The vulnerability affects the __libdw_thread_tail function in eu-readelf (libdw_alloc.c), where manipulation of the w argument leads to memory corruption. Nessus/NVD entries describe remote exploitation with high complexity and publicly disclosed exploit...

7.5CVSS6.9AI score0.00142EPSS
Exploits1References8Affected Software1
OSV
OSVadded 2025/02/11 7:15 a.m.10 views

CVE-2025-1179

A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfdputl64 of the file bfd/libbfd.c of the component ld. The manipulation leads to memory corruption. The attack may be launched remotely. The complexity of an attack is rather hig...

7.5CVSS5.1AI score
Exploits0References7
NVD
NVDadded 2025/02/10 6:15 p.m.7 views

CVE-2025-1152

A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdup.c of the component ld. The manipulation leads to memory leak. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

3.7CVSS0.00048EPSS
Exploits1References5
SUSE CVE
SUSE CVEadded 2025/02/05 3:47 a.m.1 views

SUSE CVE-2025-24369

Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis allows attackers to bypass the bot protection by requesting a challenge, formulates any nonce suc...

2.3CVSS6.9AI score0.00176EPSS
Exploits0References3
CVE
CVEadded 2025/02/03 1:0 a.m.50 views

CVE-2025-0974

CVE-2025-0974 affects MaxD Lightning Module 4.43 on OpenCart. The issue is a deserialization vulnerability triggered by the li_op/md argument, enabling remote-style manipulation with high attack complexity and LOW confidentiality/integrity/availability impact per sources. Several advisories repor...

5CVSS5.4AI score0.00036EPSS
Exploits0References5
Veracode
Veracodeadded 2025/01/31 5:27 a.m.289 views

Bot Protection Bypass

Anubis is vulnerable to Bot Protection Bypass. The vulnerability is due to insufficient validation due to allowing attackers to specify a nonce and set the challenge difficulty to zero, effectively bypassing the bot protection mechanism...

2.3CVSS6.5AI score0.00176EPSS
Exploits0References4Affected Software2
Vulnrichment
Vulnrichmentadded 2025/01/27 10:57 p.m.5 views

CVE-2025-24369 Anubis has a bot protection bypass when a sophisticated attacker asks to pass a challenge of difficulty 0

Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis allows attackers to bypass the bot protection by requesting a challenge, formulates any nonce suc...

2.3CVSS6.5AI score0.00176EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2025/01/27 10:57 p.m.0 views

CVE-2025-24369

Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis allows attackers to bypass the bot protection by requesting a challenge, formulates any nonce suc...

2.3CVSS6.9AI score0.00176EPSS
Exploits0
Cvelist
Cvelistadded 2025/01/27 10:57 p.m.17 views

CVE-2025-24369 Anubis has a bot protection bypass when a sophisticated attacker asks to pass a challenge of difficulty 0

Anubis is a tool that allows administrators to protect bots against AI scrapers through bot-checking heuristics and a proof-of-work challenge to discourage scraping from multiple IP addresses. Anubis allows attackers to bypass the bot protection by requesting a challenge, formulates any nonce suc...

2.3CVSS0.00176EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/12/16 7:0 p.m.11 views

CVE-2024-12663 funnyzpc Mee-Admin Login login observable response discrepancy

A vulnerability classified as problematic was found in funnyzpc Mee-Admin up to 1.6. This vulnerability affects unknown code of the file /mee/login of the component Login. The manipulation of the argument username leads to observable response discrepancy. The attack can be initiated remotely. The...

6.3CVSS7AI score0.00278EPSS
Exploits0References4
Rows per page
Query Builder