Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/02/15 9:26 a.m.2 views

OPENSUSE-SU-2026:20236-1 Security update for nodejs22

This update for nodejs22 fixes the following issues: Update to 22.22.0: - CVE-2025-55130: file system permissions bypass via crafted symlinks bsc1256569. - CVE-2025-55131: timeout-based race conditions allow for allocations that contain leftover data from previous operations and lead to exposure ...

9.1CVSS7.1AI score0.00109EPSS
Exploits2References14
OSV
OSVadded 2026/02/15 8:45 a.m.3 views

SUSE-SU-2026:20436-1 Security update for nodejs22

This update for nodejs22 fixes the following issues: Update to 22.22.0: - CVE-2025-55130: file system permissions bypass via crafted symlinks bsc1256569. - CVE-2025-55131: timeout-based race conditions allow for allocations that contain leftover data from previous operations and lead to exposure ...

9.1CVSS7.1AI score0.00109EPSS
Exploits2References15
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-3370

Malware in sbrugna...

5.1CVSS6.4AI score0.00447EPSS
Exploits0References6
CNVD
CNVDadded 2025/05/14 12:0 a.m.1 views

Cisco IOS Access Control Error Vulnerability (CNVD-2025-15478)

Cisco IOS is the United States Cisco Cisco company's set of operating system developed for its network equipment. Cisco IOS suffers from an Access Control Error vulnerability that stems from a misconfiguration of access control lists, which can be exploited by an attacker to cause bypassing of AC...

4.7CVSS7AI score0.001EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/08/19 12:0 a.m.1 views

PT-2023-6794

Name of the Vulnerable Software and Affected Versions: xrdp versions prior to 0.9.23 Description: The issue is related to the improper handling of session establishment errors in xrdp, allowing bypassing of OS-level session restrictions. The auth start session function can return a non-zero value...

9.8CVSS8.5AI score0.00404EPSS
Exploits0References105
wpexploit
wpexploitadded 2022/08/01 12:0 a.m.138 views

Social Slider Feed < 2.0.5 - Subscriber+ Arbitrary Feed Deletion

The plugin does not have authorisation and CSRF check in place when deleting feeds, allowing ay authenticated users, such as subscriber to delete arbitrary feeds As any authenticated user, such as subscriber. Or via CSRF against them...

0.5AI score
Exploits0
OSV
OSVadded 2017/10/20 12:29 a.m.1 views

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

6.7CVSS6.1AI score
Exploits0References1
securityvulns
securityvulnsadded 2006/05/15 12:0 a.m.37 views

90&#37; of programs made in PHP5 and prior Full Path Disclosure vuln.

:Introduction: Normally one of the last steps when accessing to a web-server is to find the url where the web is installed more common in RFD. This may be a hard step, if the RPD is the only bug in that server, but PHP programs have functions that unexpectedly can return lots of errors. ATTENTION...

0.8AI score
Exploits0
Rows per page
Query Builder