Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2025/10/23 12:0 a.m.4 views

KeeneticOS 安全漏洞

KeeneticOS is an operating system from the German company Keenetic. A security vulnerability exists in KeeneticOS versions prior to 4.3, which stems from a cross-site request forgery in the /rci API endpoint that could lead to an attacker taking over the device by adding an additional user with...

5.3CVSS6.6AI score0.00025EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/10/23 12:0 a.m.20 views

CVE-2025-56009

Cross site request forgery CSRF vulnerability in KeeneticOS before 4.3 at "/rci" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit...

6.4AI score0.00025EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/10/01 12:0 a.m.4 views

PT-2025-43521

Name of the Vulnerable Software and Affected Versions KeeneticOS versions prior to 4.3 Description A cross site scripting XSS issue exists in KeeneticOS. This flaw, found at the "Wireless ISP" page, could allow an attacker in close proximity to the router to gain control of the device by adding n...

6.4CVSS5.3AI score0.00029EPSS
Exploits1References10
Github Security Blog
Github Security Blogadded 2025/02/05 9:14 p.m.32 views

MobSF Local Privilege Escalation

Product: Mobile Security Framework MobSF Version: 4.3.0 CWE-ID: CWE-269: Improper Privilege Management CVSS vector v.4.0: 7.1 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N CVSS vector v.3.1: 6.5 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Description: MobSF has a functionality of dividing users ...

8.5CVSS7.1AI score0.00205EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2021/06/09 12:0 a.m.2 views

Circutor SGE-PLC1000 操作系统命令注入漏洞

Circutor SGE-PLC1000 is a smart metering system device. The primary function is to manage utility power through CIRWATT meters or other meters with PRIME technology.An operating system command injection vulnerability exists in firmware version 0.9.2b of the Circutor SGE-PLC1000, which can be...

10CVSS5.9AI score0.01478EPSS
Exploits0References1
Huawei
Huaweiadded 2015/06/09 12:0 a.m.37 views

Security Advisory - VENOM Vulnerability in Huawei Products

Huawei has noticed the buffer overflow vulnerability in the floppy disk controller FDC of QEMU disclosed by open source organization Xen. This vulnerability allows an attacker to escape out of the virtual machine, execute code on the physical host with full privilege. Vulnerability ID:...

7.7CVSS7.2AI score0.19325EPSS
Exploits1Affected Software2
securityvulns
securityvulnsadded 2008/03/09 12:0 a.m.138 views

Horde Webmail file inclusion proof of concept & patch.

Horde 3.1.6 arbitrary file inclusion vulnerability, proof of concept & patch. A severe security vulnerability affects any unix distribution running version 3.1.6 of the Horde webmail client included in most popular webhosting control panels. All previous versions are also affected and it is...

0.1AI score
Exploits0
Rows per page
Query Builder