Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2026/02/20 9:6 p.m.18 views

CVE-2026-27022 RediSearch Query Injection in @langchain/langgraph-checkpoint-redis

@langchain/langgraph-checkpoint-redis is the Redis checkpoint and store implementation for LangGraph. A query injection vulnerability exists in the @langchain/langgraph-checkpoint-redis package's filter handling. The RedisSaver and ShallowRedisSaver classes construct RediSearch queries by directl...

6.5CVSS0.0002EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/08/15 12:0 a.m.2 views

WordPress plugin Gestion de tarifs SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A SQL injection...

6.5CVSS7.8AI score0.00052EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/06/09 12:0 a.m.2 views

WordPress plugin Formulario de contacto SalesUp! 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. The WordPress Formulario de contacto SalesUp! plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping...

7.1CVSS6AI score0.00185EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/10/16 12:0 a.m.1 views

Discourse Cross-Site Scripting Vulnerability

Discourse is an open source community discussion platform. The platform includes community, email, and chat room features. Discourse suffers from a cross-site scripting vulnerability that stems from incorrectly escaping user input, which could lead to cross-site scripting attacks...

8CVSS6AI score0.00628EPSS
Exploits0References3
Prion
Prionadded 2023/04/19 12:15 a.m.17 views

Sql injection

Archery is an open source SQL audit platform. The Archery project contains multiple SQL injection vulnerabilities, that may allow an attacker to query the connected databases.Affected versions are subject to SQL injection in the explain method in sqloptimize.py. User input coming from the dbname...

4CVSS6.8AI score0.01358EPSS
Exploits1References1Affected Software1
CNNVD
CNNVDadded 2021/09/14 12:0 a.m.1 views

CS-Cart 跨站脚本漏洞

CS-Cart is an e-commerce platform developed from the former open source PHP. A cross-site scripting vulnerability exists in CS-Cart version 4.11.1, which stems from the lack of effective validation and escaping of user input in the post description on the blog post creation page in the software,...

6.1CVSS5.9AI score0.0024EPSS
Exploits0References2
CNNVD
CNNVDadded 2021/08/19 12:0 a.m.1 views

Puppet 安全漏洞

Puppet is a client/server C/S architecture based configuration management tool from Puppet Labs, which can be used to manage configuration files, users, cron tasks, packages, system services, etc. Puppet Enterprise is the enterprise version of Puppet. Puppet Enterprise is the enterprise version o...

8.8CVSS7.8AI score0.00495EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2013/06/07 12:0 a.m.26 views

ZPanel 10.0.0.2 Remote Command Execution

One of our expert team members [email protected] who is assigned to do the security audit of ZPanel code has found the follwoing security vulnerability with ZPanel 10.0.0.2 which will allow anyone to escalate the root accress and access the server by anyone. The security audit states the...

Exploits0
Rows per page
Query Builder