Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2026/05/21 11:49 a.m.31 views

CVE-2026-6841 Reflected XSS in Request Tracker

Request Tracker is vulnerable to a reflected cross-site scripting XSS vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary JavaScript execution in the victim’s browser. This vulnerability affects versions from 5.0.4 up to 5.0....

5.1CVSS0.00038EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/07 3:51 a.m.4 views

EUVD-2026-28250

When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain text in the logs. Spring Cloud Config 3.1.x: affected from 3.1.0 through 3.1.13 inclusive; upgrade to 3.1.14 or greater Enterprise Support Only. Spring Cloud Config 4.1.x: affected from 4.1.0 throu...

4.4CVSS5.8AI score0.00007EPSS
Exploits0References1
OSV
OSVadded 2024/07/30 7:15 a.m.2 views

CVE-2024-7100

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's btbbbutton shortcode in all versions up to, and including, 5.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticate...

5.4CVSS6AI score
Exploits0References4
CNNVD
CNNVDadded 2024/06/24 12:0 a.m.1 views

Axiros AXESS ACS Security Breach

Axiros AXESS ACS is an industry flagship software application from Axiros, Inc. Designed to address automated service provisioning, service monitoring and service assurance. A security vulnerability exists in Axiros AXESS ACS versions 4.x prior to 4.3.2 and 5.0.0 that stems from an authorization...

9.8CVSS6.8AI score0.00179EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/06/20 12:0 a.m.3 views

Northern.tech Mender security breach

Northern.tech Mender is a secure and reliable remote update solution from Northern.tech, Inc. for connected devices of any size. A security vulnerability exists in Northern.tech Mender that stems from the presence of faulty access control, resulting in an attacker privilege that can be escalated...

8.8CVSS6.8AI score0.00137EPSS
Exploits0References3
OSV
OSVadded 2023/08/11 3:15 a.m.0 views

CVE-2023-33867

Improper buffer restrictions in some IntelR RealSenseTM ID software for IntelR RealSenseTM 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6AI score
Exploits0References1
CNNVD
CNNVDadded 2022/05/12 12:0 a.m.1 views

合勤科技 USG FLEX 操作系统命令注入漏洞

Zyxel USG FLEX is a firewall from China-based Hopkins Technology Zyxel. It provides flexible VPN options IPsec, SSL, or L2TP to provide flexible and secure remote access for remote work and management. A security vulnerability exists in Zyxel USG FLEX versions 5.00 through 5.21. An attacker could...

10CVSS8.7AI score0.94445EPSS
Exploits25References12
ATTACKERKB
ATTACKERKBadded 2016/01/03 5:59 a.m.1 views

CVE-2015-5035

Cross-site scripting XSS vulnerability in IBM Connections 3.x before 3.0.1.1 CR3, 4.0 before CR4, 4.5 before CR5, and 5.0 before CR3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2015-5036...

5.4CVSS5.7AI score0.00168EPSS
Exploits0References3
Rows per page
Query Builder