Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/27 5:58 p.m.5 views

CVE-2026-24001

A flaw was found in jsdiff. A specially crafted patch input containing specific line break characters can cause the parsePatch method to enter an infinite loop, leading to uncontrolled memory consumption and a process crash, resulting in a denial of service. The applyPatch method is similarly...

7.5CVSS5.8AI score0.00023EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2025/09/18 6:11 a.m.2 views

CVE-2023-49565 Remote Code Execution

The cbismanager Podman container is vulnerable to remote command execution via the /api/plugins endpoint. Improper sanitization of the HTTP Headers X-FILENAME, X-PAGE, and X-FIELD allows for command injection. These headers are directly utilized within the subprocess.Popen Python function without...

8.5AI score0.00201EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/09/18 12:0 a.m.1 views

Nokia CloudBand Infrastructure Software和Nokia Container Service 安全漏洞

Nokia CloudBand Infrastructure Software and Nokia Container Service are both products of the Finnish company Nokia.Nokia CloudBand Infrastructure Software is a platform that supports the virtualization of network functions. Nokia Container Service is a container management service. A security...

8.4CVSS7AI score0.00201EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2024/07/12 6:1 p.m.5 views

Exploit for Improper Encoding or Escaping of Output in Exim

CVE-2024-39929 PoC Vulnerability Brief Exim through 4.97...

5.4CVSS7AI score0.6031EPSS
Exploits5
OSV
OSVadded 2022/05/13 1:26 a.m.1 views

GHSA-X9FV-C87W-55WC Improper Control of Generation of Code in Apache Camel

Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple" in a CamelFileName message header to a 1 FILE or 2 FTP producer...

6.8CVSS6.2AI score0.18012EPSS
Exploits0References21
RedHat Linux
RedHat Linuxadded 2014/02/05 5:42 p.m.3 views

Camel: remote code execution via header field manipulation

Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple" in a CamelFileName message header to a 1 FILE or 2 FTP producer...

6.8CVSS7.7AI score0.18012EPSS
Exploits0References4
NVD
NVDadded 2013/02/24 11:48 a.m.14 views

CVE-2012-6275

Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via 1 the filename header in an SCH request or 2 the userid component in a DUPF request...

10CVSS6.8AI score0.76513EPSS
Exploits8References1
OSV
OSVadded 2010/07/06 5:17 p.m.1 views

DEBIAN-CVE-2010-2251

The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted...

7.5CVSS7.9AI score0.02416EPSS
Exploits0References1
Rows per page
Query Builder