Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

147 matches found

RedhatCVE
RedhatCVEadded 2026/06/05 7:12 p.m.5 views

CVE-2026-44403

Wing FTP Server before 8.1.3 contains an authenticated remote code execution vulnerability in the session serialization mechanism that allows authenticated administrators to inject arbitrary Lua code through the domain admin mydirectory field. Attackers can exploit unsafe serialization of session...

8.6CVSS6.4AI score0.02643EPSS
Exploits5References1
GithubExploit
GithubExploitadded 2026/05/14 6:58 a.m.69 views

Exploit for CVE-2026-44403

Wing FTP Server v8.1.2 contains a Remote Code Execution RCE vu...

8.6CVSS6.1AI score0.02643EPSS
Exploits5
ATTACKERKB
ATTACKERKBadded 2026/05/12 8:43 p.m.9 views

CVE-2026-44403

Wing FTP Server before 8.1.3 contains an authenticated remote code execution vulnerability in the session serialization mechanism that allows authenticated administrators to inject arbitrary Lua code through the domain admin mydirectory field. Attackers can exploit unsafe serialization of session...

8.6CVSS6.5AI score0.02643EPSS
Exploits5References3Affected Software1
CVE
CVEadded 2026/05/12 8:43 p.m.26 views

CVE-2026-44403

Wing FTP Server 8.1.2 is affected: an authenticated remote code execution due to unsafe session serialization that injects Lua via the domain admin mydirectory field, leading to code execution when a poisoned session is loaded with loadfile(). Root cause: unsafe serialization of session values in...

8.6CVSS6.5AI score0.02643EPSS
Exploits5References2Affected Software1
GithubExploit
GithubExploitadded 2026/03/23 4:35 p.m.161 views

TGT2Admin-

🎭 RBCDExploit - Resource-Based Constrained Delegation Attack...

6AI score
Exploits0
OSV
OSVadded 2026/02/24 8:16 a.m.8 views

CVE-2025-40538

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

7.2CVSS6.1AI score0.00496EPSS
Exploits0References2
NVD
NVDadded 2026/02/24 8:16 a.m.9 views

CVE-2025-40538

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS0.00496EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/02/24 7:40 a.m.20 views

CVE-2025-40538 SolarWinds Serv-U Broken Access Control Remote Code Execution Vulnerability

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS0.00496EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/24 7:40 a.m.5 views

CVE-2025-40538 SolarWinds Serv-U Broken Access Control Remote Code Execution Vulnerability

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS6AI score0.00496EPSS
Exploits0References2
EUVD
EUVDadded 2026/02/24 7:40 a.m.4 views

EUVD-2025-207546

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS6AI score0.00496EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/02/04 8:56 a.m.140 views

Ofensive-security-Portfolio

This repository contains my Offensive Cyber Security / Penetrati...

5.6AI score
Exploits0
GithubExploit
GithubExploitadded 2026/02/04 8:56 a.m.139 views

Ofensive-security

This repository contains my Offensive Cyber Security / Penetrati...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/12/03 12:0 a.m.4 views

RockyLinux 9 : ipa (RLSA-2025:20928)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:20928 advisory. FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-7493 Tenable has extracted the preceding description block directly from the...

9.1CVSS5.5AI score0.00511EPSS
Exploits0References3
Rockylinux
Rockylinuxadded 2025/11/21 6:13 p.m.5 views

ipa security update

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rocky Enterprise Software Foundation Identity Management IdM is a centralized...

9.1CVSS7AI score0.00511EPSS
Exploits0
OSV
OSVadded 2025/11/21 6:13 p.m.5 views

RLSA-2025:20928 Important: ipa security update

Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...

9.1CVSS6.7AI score0.00511EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2025/10/09 8:4 a.m.2 views

Important: Red Hat Security Advisory: idm:DL1 security update

An update for the idm:DL1 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.1CVSS7.6AI score0.00511EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.3 views

AlmaLinux 10 : ipa (ALSA-2025:9190)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9190 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...

9.1CVSS8.5AI score0.01827EPSS
Exploits1References3
Rockylinux
Rockylinuxadded 2025/10/07 5:25 p.m.4 views

ipa security update

An update is available for ipa. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rocky Enterprise Software Foundation Identity Management IdM is a centralized...

9.1CVSS7AI score0.00511EPSS
Exploits0
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-21892

Malware in sbrugna...

4.3CVSS4.9AI score0.00644EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-28900

Malware in sbrugna...

7.5CVSS7.5AI score0.02475EPSS
Exploits1References9
Rows per page
Query Builder