Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2010-3212

Malware in sbrugna...

6.8CVSS6.4AI score0.01777EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-52016

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00096EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/05/23 3:41 p.m.8 views

CVE-2025-48375 Schule Missing Rate Limiting on OTP Email Requests – Susceptible to Abuse & DoS

Schule is open-source school management system software. Prior to version 1.0.1, the file forgotpassword.php or equivalent endpoint responsible for email-based OTP generation lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be...

8.7CVSS6.5AI score0.0042EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:51 a.m.7 views

CVE-2023-32995

A cross-site request forgery CSRF vulnerability in Jenkins SAML Single Sign OnSSO Plugin 2.0.0 and earlier allows attackers to send an HTTP POST request with JSON body containing attacker-specified content, to miniOrange's API for sending emails...

8.8CVSS6.8AI score0.00098EPSS
Exploits0References1
OSV
OSVadded 2025/03/02 7:13 a.m.2 views

BIT-MASTODON-2025-27157 Mastodon's rate-limits are missing on `/auth/setup`

Mastodon is a self-hosted, federated microblogging platform. Starting in version 4.2.0 and prior to versions 4.2.16 and 4.3.4, the rate limits are missing on /auth/setup. Without those rate limits, an attacker can craft requests that will send an email to an arbitrary addresses. Versions 4.2.16 a...

5.3CVSS5.2AI score0.00239EPSS
Exploits0References3
NVD
NVDadded 2024/12/31 4:15 p.m.10 views

CVE-2024-53647

Trend Micro ID Security, version 3.0 and below contains a vulnerability that could allow an attacker to send an unlimited number of email verification requests without any restriction, potentially leading to abuse or denial of service...

8.2CVSS0.00096EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/09/01 12:0 a.m.1 views

IBM Cognos Analytics 资源管理错误漏洞

IBM Cognos Analytics is a suite of business intelligence software from IBM Corporation. The software includes reports, dashboards and scorecards, and can help companies adjust their decisions by analyzing key factors and key people, etc. A security vulnerability exists in IBM Cognos Analytics,...

7.5CVSS6.5AI score0.01331EPSS
Exploits0References4
Atlassian
Atlassianadded 2022/07/15 9:53 a.m.34 views

The JSM Mail Handler functionality creates tickets from incoming emails in wrong projects

h3. Issue Summary When multiple Jira Service Management JSM projects are configured with a Mail Handler|https://confluence.atlassian.com/servicemanagementserver/receiving-requests-by-email-939926303.html via Project Settings Email Requests, the following issue happens: - the JSM Mail Handler...

0.3AI score
Exploits0
The Hacker News
The Hacker Newsadded 2013/03/02 4:56 p.m.10 views

Evernote hacked, reset your password Now !

Cloud note-taking service Evernote has been hacked and now you have to reset your password imminently. According to a post on the official Evernote blog, an unidentified attacker compromise the servers and extracted usernames, email addresses, and passwords. "Evernote's Operations & Security team...

6.9AI score
Exploits0
Rows per page
Query Builder