Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2008-5384

Malware in sbrugna...

9.4CVSS6.2AI score0.02647EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2006-6454

Malware in sbrugna...

10CVSS6.4AI score0.01239EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-17218

Malware in sbrugna...

5.7CVSS6.1AI score0.00739EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2001-0142

Malware in sbrugna...

1.2CVSS6.4AI score0.00304EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2018-15568

Malware in sbrugna...

4.3CVSS4.5AI score0.00888EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-32122

Malicious code in bioql PyPI...

5.5CVSS5AI score0.00631EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2025/02/07 8:32 p.m.5 views

xml2rfc has file inclusion irregularities

Version 3.12.0 changed xml2rfc so that it would not access local files without the presence of its new --allow-local-file-access flag. This prevented XML External Entity XXE injection attacks with xinclude and XML entity references. It was discovered that xml2rfc does not respect...

7.2AI score
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/12/10 12:11 a.m.10 views

CVE-2024-47578 Multiple vulnerabilities in SAP NetWeaver AS for JAVA(Adobe Document Services)

Adobe Document Service allows an attacker with administrator privileges to send a crafted request from a vulnerable web application. It is usually used to target internal systems behind firewalls that are normally inaccessible to an attacker from the external network, resulting in a Server-Side...

9.1CVSS6.7AI score0.00874EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/11/26 12:0 a.m.4 views

PT-2024-16596 · WordPress · Product Input Fields For Woocommerce

Name of the Vulnerable Software and Affected Versions: Product Input Fields for WooCommerce plugin for WordPress versions up to, and including, 1.9 Description: The issue allows authenticated attackers with Contributor-level access and above to read the contents of arbitrary files on the server,...

6.5CVSS9.1AI score0.0075EPSS
Exploits0References6
OSV
OSVadded 2022/02/04 8:31 a.m.10 views

SUSE-SU-2022:0334-1 Security update for containerd, docker

This update for containerd, docker fixes the following issues: - CVE-2021-41089: Fixed 'cp' can chmod host files bsc1191015. - CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby bsc1191434. - CVE-2021-41092: Fixed exposed user credentials with a misconfigured...

7.8CVSS6.4AI score0.02693EPSS
Exploits3References11
Citrix
Citrixadded 2021/10/07 12:0 a.m.7 views

Citrix PVS vDisk is caching on server even though it is configured to cache to the machine

Scenario: PVS target devices streaming a new version of a vDisk are caching to the server instead of to the cache drive on the target device. Target devices streaming the original version of the vDisk work correctly. Attempts to create or edit a file on the write cache are denied. Inspecting the...

7.2AI score
Exploits0
OSV
OSVadded 2020/11/27 5:23 a.m.5 views

OPENSUSE-SU-2020:2064-1 Security update for perl-DBI

This update for perl-DBI fixes the following issues: - DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute in the data source name DSN. bsc1176492, CVE-2014-10401, CVE-2014-10402 This update was imported from the SUSE:SLE-15-SP2:Update update...

6.1CVSS6.3AI score0.00488EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2020/03/11 12:0 a.m.36 views

NewStart CGSL MAIN 4.05 : thunderbird Multiple Vulnerabilities (NS-SA-2020-0022)

The remote NewStart CGSL host, running version MAIN 4.05, has thunderbird packages installed that are affected by multiple vulnerabilities: - Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent proces...

10CVSS8.9AI score0.55874EPSS
Exploits37References36
OSV
OSVadded 2019/08/28 5:59 a.m.7 views

SUSE-SU-2019:14155-1 Recommended update for ghostscript-library

This update for ghostscript-library fixes the following issues: Security issue fixed: - CVE-2019-3838: Fixed various bugs which allows to reenable and misuse system Postscript operators to read files from within Postscript files and send them with the help of e.g. the %pipe% to the attacker...

7.3CVSS5.8AI score0.02642EPSS
Exploits0References3
seebug.org
seebug.orgadded 2008/07/31 12:0 a.m.137 views

Pligg <= 9.9.0 (XSS/LFI/SQL) Multiple Remote Vulnerabilities

No description provided by source. Pligg = 9.9.0 Multiple Vulnerabilities July 31, 2008 Vendor : Pligg, LLC URL : http://www.pligg.com/ Version : Pligg = 9.9.0 Risk : Multiple Vulnerabilities Description: Pligg is a popular open source, full featured, content management system written in php. The...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2008/07/30 12:0 a.m.36 views

Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection

Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection GulfTech Security Research July 30, 2008 Vendor : Pligg LLC URL : http://www.pligg.com/ Version : Pligg alertdocument.cookie; The above example link would display the end users cookie to them. Of course this can also be use...

0.5AI score
Exploits0
Prion
Prionadded 2006/05/12 12:2 a.m.20 views

Design/Logic Flaw

The RtlDosPathNameToNtPathNameU API function in NTDLL.DLL in Microsoft Windows 2000 SP4 and XP SP2 does not properly convert DOS style paths with trailing spaces into NT style paths, which allows context-dependent attackers to create files that cannot be accessed through the expected DOS path or...

2.1CVSS7AI score0.04361EPSS
Exploits1References5
exploitpack
exploitpackadded 2005/01/28 12:0 a.m.17 views

XOOPS Module module 3.0 - Directory Traversal

XOOPS Module module 3.0 - Directory Traversal source: https://www.securityfocus.com/bid/12406/info Xoops Incontent module is reported prone to a directory traversal vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input. A malicious user could...

7.3AI score
Exploits0
Exploit DB
Exploit DBadded 2005/01/28 12:0 a.m.24 views

IceWarp Web Mail 5.3 - login.html 'Username' Cross-Site Scripting

source: https://www.securityfocus.com/bid/12396/info Multiple remote vulnerabilities reportedly affect IceWarp Web Mail. The underlying issues are due to input and access validation errors. Multiple cross-site scripting and HTML injection vulnerabilities affect the vulnerable software. The produc...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2004/08/20 12:0 a.m.12 views

QuiXplorer < 2.3.1 item Parameter Directory Traversal File Access

Binary data 1727.prm...

7.3AI score
Exploits0
Rows per page
Query Builder