Lucene search
K

110 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.9 views

CVE-2026-35548

An issue was discovered in guardsix formerly Logpoint ODBC Enrichment Plugins before 5.2.1 5.2.1 is used in guardsix 7.9.0.0. A logic flaw allowed stored database credentials to be reused after modification of the target Host, IP address, or Port. When editing an existing Enrichment Source,...

8.5CVSS5.4AI score0.00213EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/06/05 2:57 p.m.82 views

WS-PoC-Search

WS-PoC-Search Lightning-fast CVE and PoC intelligence searc...

9CVSS7.7AI score0.00663EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2026/05/30 12:0 a.m.11 views

GCVE: A Decentralized Model for Vulnerability Identification, Publication, and Operational Enrichment

The Global CVE initiative GCVE proposes a decentralized, open, and extensible model for vulnerability identification, publication, and enrichment. It addresses a gap in today's vulnerability ecosystem: centralized systems provide rigorous control and widely recognized identifiers, while many...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/27 4:29 p.m.81 views

ModuScan

| / | | | /...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/23 12:0 a.m.8 views

CyBOKClaw: Human-In-The-Loop CyBOK Mapping for Cybersecurity Curriculum

This paper presents CyBOKClaw, an interpretable human-in-the-loop retrieval framework for mapping cybersecurity keywords or phrases KWoPs to the Cyber Security Body of Knowledge CyBOK. Rather than treating the task as strict exact classification, the framework is designed as a top-k candidate...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/06 1:26 a.m.76 views

CVE-Intelligence

VulnForge Local-only, single-user CVE alert & patch-priority...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/30 10:58 a.m.92 views

metasploit-web-scanner-module

MSF Web Vulnerability Scanner Advanced Advanced Metasploit au...

5.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/04/28 1:0 p.m.11 views

Simplifying AWS defense with Microsoft Sentinel UEBA

In this article 1. Under the hood: The tables 2. Traditional vs. new approach 3. Real-world attack scenarios: Microsoft Sentinel UEBA in action 4. Practical implementation: Getting started 5. Limitations and constraints 6. From raw logs to behavioral context With the expansion of Microsoft Sentin...

5.9AI score
Exploits0
hivepro
hivepro
added 2026/04/23 9:2 a.m.5 views

The Backlog Became Policy

& In February, we called the gap between CVE disclosure and scanner signatures the "breach zone." On April 15, 2026, NIST made that gap permanent — and signatureless detection stopped being an advantage. It became a requirement. This post updates Attackers Don't Need Signatures. Neither Should Yo...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/22 3:16 p.m.6 views

CVE-2026-35548

An issue was discovered in guardsix formerly Logpoint ODBC Enrichment Plugins before 5.2.1 5.2.1 is used in guardsix 7.9.0.0. A logic flaw allowed stored database credentials to be reused after modification of the target Host, IP address, or Port. When editing an existing Enrichment Source,...

8.5CVSS0.00213EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/22 12:0 a.m.3 views

CVE-2026-35548

An issue was discovered in guardsix formerly Logpoint ODBC Enrichment Plugins before 5.2.1 5.2.1 is used in guardsix 7.9.0.0. A logic flaw allowed stored database credentials to be reused after modification of the target Host, IP address, or Port. When editing an existing Enrichment Source,...

8.5CVSS5.7AI score0.00213EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.7 views

guardsix ODBC Enrichment Plugins 代码问题漏洞

Guardsix ODBC Enrichment Plugins are a set of data extension plugins developed by the Danish company Guardsix. Versions of Guardsix ODBC Enrichment Plugins prior to version 5.2.1 contained code vulnerabilities. These vulnerabilities were due to logical flaws that allowed for the reuse of stored...

8.5CVSS5.9AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/22 12:0 a.m.42 views

CVE-2026-35548

An issue was discovered in guardsix formerly Logpoint ODBC Enrichment Plugins before 5.2.1 5.2.1 is used in guardsix 7.9.0.0. A logic flaw allowed stored database credentials to be reused after modification of the target Host, IP address, or Port. When editing an existing Enrichment Source,...

0.00213EPSS
Exploits0References2
CVE
CVE
added 2026/04/22 12:0 a.m.8 views

CVE-2026-35548

GuardSix/Logpoint guardsix ODBC Enrichment Plugins before 5.2.1 contain a logic flaw: stored database credentials can be reused after changing target Host/IP/Port. When editing an existing Enrichment Source, previously stored credentials remain and can be redirected to unintended internal systems...

8.5CVSS5.7AI score0.00213EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34451

Name of the Vulnerable Software and Affected Versions guardsix ODBC Enrichment Plugins versions prior to 5.2.1 Description A logic flaw exists where stored database credentials are retained after the target Host, IP address, or Port is modified. When editing an Enrichment Source, the system fails...

8.5CVSS5.8AI score0.00213EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2026/04/21 12:0 a.m.10 views

AgentSOC: A Multi-Layer Agentic AI Framework for Security Operations Automation

Security Operations Centers SOCs increasingly encounter difficulties in correlating heterogeneous alerts, interpreting multi-stage attack progressions, and selecting safe and effective response actions. This study introduces AgentSOC, a multi-layered agentic AI framework that enhances SOC...

5.7AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/18 12:58 p.m.107 views

tachyon

Tachyon Tachyon is a Go-based command-line web vulnerability...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/04/17 7:14 a.m.9 views

NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

The National Institute of Standards and Technology NIST has announced changes to the way it handles cybersecurity vulnerabilities and exposures CVEs listed in its National Vulnerability Database NVD, stating it will only enrich those that fulfil certain conditions owing to an explosion in CVE...

5.8AI score
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/08 6:17 p.m.2 views

CVE-2026-34724 Zammad has a server-side template injection leading to RCE via AI Agent

Zammad is a web based open source helpdesk/customer support system. Prior to 7.0.1, a server-side template injection vulnerability which leads to RCE via AI Agent exists. Impact is limited to environments where an attacker can control or influence typeenrichmentdata typically high-privilege...

8.7CVSS5.9AI score0.00262EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 6:17 p.m.16 views

CVE-2026-34724 Zammad has a server-side template injection leading to RCE via AI Agent

Zammad is a web based open source helpdesk/customer support system. Prior to 7.0.1, a server-side template injection vulnerability which leads to RCE via AI Agent exists. Impact is limited to environments where an attacker can control or influence typeenrichmentdata typically high-privilege...

8.7CVSS0.00262EPSS
Exploits0References1
Rows per page
Query Builder