Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Cvelist
Cvelistadded 6 days ago24 views

CVE-2026-49377

In JetBrains TeamCity before 2025.11.2 exposure of sensitive data via default agent parameters...

4.3CVSS0.00002EPSS
Exploits0References1
NVD
NVDadded 2026/02/23 9:19 p.m.4 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS0.00013EPSS
Exploits0References1
CVE
CVEadded 2026/02/18 7:52 p.m.5 views

CVE-2026-23491

InvoicePlane up to version 1.6.3 is affected by a path traversal vulnerability in the Guest.Get controller’s get_file method, allowing unauthenticated attackers to read arbitrary server files (including configuration with database credentials). Root cause: improper input handling of the filename ...

9.3CVSS5.6AI score0.00106EPSS
Exploits2References2Affected Software1
CNNVD
CNNVDadded 2026/01/27 12:0 a.m.3 views

IX-Ray Engine security vulnerabilities

IX-Ray Engine is a modern game engine open-source by the IX-Ray Team. Versions of IX-Ray Engine prior to 1.3 contained security vulnerabilities, which were caused by exposing sensitive information to unauthorized participants...

7.5CVSS5.8AI score0.0005EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/12/31 12:0 a.m.2 views

WordPress plugin Direct Payments WP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS6.4AI score0.0001EPSS
Exploits0References1
NVD
NVDadded 2025/09/22 7:15 p.m.1 views

CVE-2025-57916

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Nurul Amin WP System Information wp-system-info allows Retrieve Embedded Sensitive Data.This issue affects WP System Information: from n/a through = 1.5...

4.3CVSS0.00041EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/03/17 12:0 a.m.1 views

Fortinet FortiSandbox 安全漏洞

Fortinet FortiSandbox is an APT Advanced Persistent Threat protection appliance from Fortinet. The appliance offers dual sandboxing technology, dynamic threat intelligence system, real-time control panel and reporting. Fortinet FortiSandbox suffers from a security vulnerability that stems from th...

8.2CVSS6.6AI score0.00076EPSS
Exploits0References2
OSV
OSVadded 2021/01/19 12:50 p.m.0 views

USN-4699-1 log4net vulnerability

It was discovered that Apache Log4net incorrectly handled certain configuration files. An attacker could possibly use this issue to expose sensitive information...

9.8CVSS6.9AI score0.65576EPSS
Exploits0References2
OSV
OSVadded 2018/07/10 6:29 p.m.2 views

CVE-2018-2440

Under certain circumstances SAP Dynamic Authorization Management DAM by NextLabs Java Policy Controller versions 7.7 and 8.5 exposes sensitive information in the application logs...

4.4CVSS5.8AI score
Exploits0References2
Rows per page
Query Builder