Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentadded 2026/02/26 10:36 p.m.5 views

CVE-2026-28216 hoppscotch has IDOR in updateUserEnvironment / deleteUserEnvironment

hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, any logged-in user can read, modify or delete another user's personal environment by ID. user-environments.resolver.ts:82-109, updateUserEnvironment mutation uses @UseGuardsGqlAuthGuard but is missing the @GqlUser...

8.3CVSS6AI score0.00394EPSS
Exploits1References2
CVE
CVEadded 2024/07/27 12:0 a.m.43 views

CVE-2024-42029

The vulnerability CVE-2024-42029 affects xdg-desktop-portal-hyprland (Hyprland backend) prior to 1.3.3. Root cause: OS command execution is possible because single quotes are not used when sending a list of app IDs and titles via the environment. Impact: potential command execution with low privi...

6.3CVSS7.3AI score0.00779EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/02/13 12:0 a.m.5 views

cpython environment issue vulnerability

cpython is the Python Foundation's Python interpreter implemented in the C language. An environment issue vulnerability exists in cpython, which can be exploited to allow an attacker to separate query parameters using a semicolon ;, resulting in a malicious request being cached as a completely sa...

5.9CVSS6.8AI score0.35963EPSS
Exploits1References75
OSV
OSVadded 2020/04/08 6:15 p.m.2 views

CVE-2018-21063

An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.x Exynos chipsets software. Keymaster has an architectural problem because tlApi in TEE is not properly protected. The Samsung ID is SVE-2018-11792 August 2018...

9.8CVSS5.8AI score0.00564EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2019/06/06 12:0 a.m.6 views

The vulnerability of the pam_systemd module of the systemd daemon, related to the improper use of environmental variables, allows a attacker to compromise the confidentiality, integrity, and accessibility of protected data.

The vulnerability of the pamsystemd module in the systemd initialization daemon is related to improper cleaning of the environment before using the variable XDGSEAT. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected data...

7CVSS5.8AI score0.01217EPSS
Exploits3References12Affected Software6
BDU FSTEC
BDU FSTECadded 2016/07/06 12:0 a.m.4 views

The vulnerability of Cisco IPS software allows a malicious actor to execute arbitrary code.

The GNU Bash command shell, as of version 4.3 and later, incorrectly handles lines that follow the declaration of a function exported as a variable. This allows a malicious actor to execute arbitrary code by manipulating environment variables. Security researchers have confirmed that this...

10CVSS8.5AI score0.99999EPSS
Exploits139References2
Rows per page
Query Builder