Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1044 matches found

Nuclei
Nucleiadded 17 hours ago17 views

myfactory FMS - Cross-Site Scripting

myfactory.FMS before 7.1-912 allows cross-site scripting via the Error parameter. id: CVE-2021-42566 info: name: myfactory FMS - Cross-Site Scripting author: madrobot,daffainfo severity: medium description: | myfactory.FMS before 7.1-912 allows cross-site scripting via the Error parameter. impact...

6.1CVSS6.2AI score0.01276EPSS
Exploits3References2
Nuclei
Nucleiadded 17 hours ago12 views

Pandora FMS <=7.0NG.722 - Remote Code Execution

Pandora FMS versions =7.0NG.722 are vulnerable to unauthenticated remote code execution by chaining an unrestricted file upload CVE-2018-11221 and a local file inclusion CVE-2018-11222. An attacker can upload a malicious PHP file as a plugin and execute it via LFI, leading to full compromise of t...

9.8CVSS7.8AI score0.03825EPSS
Exploits1References3
Nuclei
Nucleiadded 17 hours ago24 views

myfactory FMS - Cross-Site Scripting

myfactory.FMS before 7.1-912 allows cross-site scripting via the UID parameter. id: CVE-2021-42565 info: name: myfactory FMS - Cross-Site Scripting author: madrobot,daffainfo severity: medium description: | myfactory.FMS before 7.1-912 allows cross-site scripting via the UID parameter. impact: |...

6.1CVSS6.2AI score0.01276EPSS
Exploits3References3
Nuclei
Nucleiadded 2026/05/27 3:54 a.m.15 views

Pandora v7.0NG.777.3 - Remote Code Execution

Arbitrary commands execution on the server by exploiting a command injection vulnerability in the LDAP authentication mechanism.This issue affects Pandora FMS- from 700 through =777.4 id: CVE-2024-11320 info: name: Pandora v7.0NG.777.3 - Remote Code Execution author: DhiyaneshDK,Shubham...

9.8CVSS7.4AI score0.92623EPSS
Exploits2References2
EUVD
EUVDadded 2026/05/12 6:30 p.m.5 views

EUVD-2026-29512

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. This issue affects Pandora FMS: from 777 through 800...

7.6CVSS5.9AI score0.00012EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/12 6:30 p.m.5 views

EUVD-2026-29497

Server-Side Request Forgery vulnerability allows Privilege Escalation via API Checker extension. This issue affects Pandora FMS: from 777 through 800...

7.1CVSS5.8AI score0.00017EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/12 6:30 p.m.4 views

EUVD-2026-29496

Session Fixation vulnerability allows Session Hijacking via crafted session ID. This issue affects Pandora FMS: from 777 through 800...

7.6CVSS5.8AI score0.00012EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/12 6:30 p.m.5 views

EUVD-2026-29494

Insecure Default Initialization of Resource vulnerability allows Authentication Bypass via API access. This issue affects Pandora FMS: from 777 through 800...

9.1CVSS5.8AI score0.00019EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/12 6:30 p.m.3 views

EUVD-2026-29495

Cross-Site Request Forgery vulnerability allows an attacker to perform unauthorized actions via crafted web page. This issue affects Pandora FMS: from 777 through 800...

7.1CVSS5.8AI score0.00007EPSS
Exploits0References2
NVD
NVDadded 2026/05/12 4:16 p.m.4 views

CVE-2026-34187

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. This issue affects Pandora FMS: from 777 through 800...

9.8CVSS0.00012EPSS
Exploits0References1
NVD
NVDadded 2026/05/12 4:16 p.m.3 views

CVE-2026-30810

Server-Side Request Forgery vulnerability allows Privilege Escalation via API Checker extension. This issue affects Pandora FMS: from 777 through 800...

8.8CVSS0.00017EPSS
Exploits0References1
NVD
NVDadded 2026/05/12 4:16 p.m.5 views

CVE-2026-30805

Insecure Default Initialization of Resource vulnerability allows Authentication Bypass via API access. This issue affects Pandora FMS: from 777 through 800...

9.1CVSS0.00019EPSS
Exploits0References1
NVD
NVDadded 2026/05/12 4:16 p.m.3 views

CVE-2026-30807

Cross-Site Request Forgery vulnerability allows an attacker to perform unauthorized actions via crafted web page. This issue affects Pandora FMS: from 777 through 800...

8.8CVSS0.00007EPSS
Exploits0References1
NVD
NVDadded 2026/05/12 4:16 p.m.5 views

CVE-2026-30808

Session Fixation vulnerability allows Session Hijacking via crafted session ID. This issue affects Pandora FMS: from 777 through 800...

8.1CVSS0.00012EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/12 3:13 p.m.27 views

CVE-2026-34187 SQL Injection in Graph Container Parameter

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. This issue affects Pandora FMS: from 777 through 800...

7.6CVSS0.00012EPSS
Exploits0References1
CVE
CVEadded 2026/05/12 3:13 p.m.7 views

CVE-2026-34187

The CVE-2026-34187 vulnerability affects Pandora FMS, specifically versions 777 through 800. It is described as an improper neutralization of special elements used in an SQL command, enabling SQL Injection via a graph container parameter. According to the NVD metrics, the issue has a CVSS v3.1 ba...

9.8CVSS5.9AI score0.00012EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/12 3:13 p.m.5 views

CVE-2026-34187 SQL Injection in Graph Container Parameter

Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. This issue affects Pandora FMS: from 777 through 800...

7.6CVSS5.9AI score0.00012EPSS
Exploits0References1
CVE
CVEadded 2026/05/12 3:12 p.m.11 views

CVE-2026-30810

Pandora FMS versions 777–800 have a Server-Side Request Forgery vulnerability that enables privilege escalation via the API Checker extension (CVE-2026-30810). The CVSSv4 base score is 7.1 (HIGH) with NETWORK vector, LOW attack complexity, and LOW privileges required. Documents confirm SSRF and p...

8.8CVSS5.8AI score0.00017EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/12 3:12 p.m.4 views

CVE-2026-30810 Server-Side Request Forgery in API Checker leads to Privilege Escalation

Server-Side Request Forgery vulnerability allows Privilege Escalation via API Checker extension. This issue affects Pandora FMS: from 777 through 800...

7.1CVSS5.8AI score0.00017EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/12 3:12 p.m.26 views

CVE-2026-30810 Server-Side Request Forgery in API Checker leads to Privilege Escalation

Server-Side Request Forgery vulnerability allows Privilege Escalation via API Checker extension. This issue affects Pandora FMS: from 777 through 800...

7.1CVSS0.00017EPSS
Exploits0References1
Rows per page
Query Builder