Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Snyk
Snykadded 2026/04/30 2:29 p.m.3 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the filename parameter passed to editfiles function via click.edit. This function invokes a subprocess with shell=True that can be injected into by including double-quoted strings in a malicious filename. An attack...

7.5CVSS5.8AI score0.00665EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/04/07 12:0 a.m.1 views

PT-2026-30930

OpenHarness prior to commit 166fcfe contains an improper access control vulnerability in built-in file tools due to inconsistent parameter handling in permission enforcement, allowing attackers who can influence agent tool execution to read arbitrary local files outside the intended repository...

8.4CVSS6.2AI score0.00127EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/04/07 12:0 a.m.3 views

PT-2026-30905

Name of the Vulnerable Software and Affected Versions File Browser versions prior to 2.63.1 Description File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. When an administrator revokes a user's Share and Downloa...

8.2CVSS5.9AI score0.00332EPSS
Exploits1References8
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 7:16 a.m.2 views

Malicious code in cici-tiwul11-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3382af711322449ddef0f877710f5b87873d45791bd454b22ad52cfe8c7e65c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
CNNVD
CNNVDadded 2021/10/26 12:0 a.m.3 views

Atlassian Jira 安全漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in Atlassian Jira that originates in the Atlassian Jira server and data center that allows remot...

6.5CVSS6.5AI score0.00981EPSS
Exploits0References2
CNVD
CNVDadded 2018/10/10 12:0 a.m.2 views

Responsive Filemanager Authentication Bypass Vulnerability

Responsive FileManager is an open source file manager written in PHP that supports uploading and managing videos, images and other files. An authentication bypass vulnerability exists in Responsive Filemanager version 9.8.1 that allows an attacker to access the file management interface, which...

7.5CVSS7.8AI score0.0091EPSS
Exploits3References1
OpenVAS
OpenVASadded 2017/04/10 12:0 a.m.25 views

Nextcloud Server Multiple Vulnerabilities - Linux

Nextcloud Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nextcloud:nextcloudserver"...

6.5CVSS4.9AI score0.01537EPSS
Exploits0References1
Rows per page
Query Builder