Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-23927

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00446EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-34475

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0076EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/05/14 12:0 a.m.2 views

Drupal Enterprise MFA - TFA for Drupal 安全漏洞

Drupal Enterprise MFA - TFA for Drupal is a module plugin in the Drupal content management system for the Drupal community. A security vulnerability exists in Drupal Enterprise MFA - TFA for Drupal versions prior to 5.2.0, which stems from a lack of authorization and may result in forced browsing...

6.5CVSS6.6AI score0.00207EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/04/23 7:54 a.m.20 views

CVE-2025-2595 Forced Browsing Vulnerability in CODESYS Visualization

An unauthenticated remote attacker can bypass the user management in CODESYS Visualization and read visualization template files or static elements by means of forced browsing...

5.3CVSS0.00369EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/03/31 4:49 a.m.14 views

CVE-2025-26689

Direct request 'Forced Browsing' issue exists in CHOCO TEI WATCHER mini IB-MCT001 all versions. If a remote attacker sends a specially crafted HTTP request to the product, the product data may be obtained or deleted, and/or the product settings may be altered...

9.8CVSS0.01082EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/02/05 9:16 p.m.9 views

CVE-2022-2192

Forced Browsing vulnerability in HYPR Server version 6.10 to 6.15.1 allows remote attackers with a valid one-time recovery token to elevate privileges via path tampering in the Magic Link page. This issue affects: HYPR Server versions later than 6.10; version 6.15.1 and prior versions...

8.8CVSS6.9AI score0.0076EPSS
Exploits0References1
CISA
CISAadded 2025/02/04 12:0 p.m.15 views

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-45195link is external Apache OFBiz Forced Browsing Vulnerability CVE-2024-29059link is external Microsoft .NET Framework Information Disclosure Vulnerability...

9.8CVSS7.6AI score0.99983EPSS
In wildExploits13References9
CNVD
CNVDadded 2024/07/10 12:0 a.m.5 views

Siemens SINEMA Remote Connect Server Forced Browsing Vulnerability

Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. Siemens SINEMA Remote Connect Server suffers from a forced browsing vulnerability, which is caused du...

7.6CVSS7AI score0.00361EPSS
Exploits0References1
CNVD
CNVDadded 2024/07/10 12:0 a.m.11 views

Siemens SINEMA Remote Connect Server Forced Browsing Vulnerability (CNVD-2024-31230)

Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. Siemens SINEMA Remote Connect Server suffers from a forced browsing vulnerability due to the failure ...

7.6CVSS7AI score0.00361EPSS
Exploits0References1
Rows per page
Query Builder