Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

415 matches found

GithubExploit
GithubExploitadded 2026/04/26 1:49 a.m.84 views

BinExploit-Bench

BinExploit-Bench: Binary Exploitation Capability Benchmark for...

6.1AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/03/26 3:0 p.m.2 views

CVE-2026-33310

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...

8.8CVSS5.9AI score0.00428EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2026/03/25 12:23 a.m.2 views

SUSE CVE-2026-33310

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...

8.8CVSS5.9AI score0.00428EPSS
Exploits1References3
NVD
NVDadded 2026/03/24 2:16 p.m.5 views

CVE-2026-33310

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...

8.8CVSS0.00428EPSS
Exploits1References2
CVE
CVEadded 2026/03/24 1:17 p.m.21 views

CVE-2026-33310

CVE-2026-33310 affects the Intake data-handling package. Before version 2.0.9, the shell() syntax used in parameter defaults could be expanded during catalog parsing, allowing embedded commands to execute when a malicious YAML catalog is loaded or accessed. This creates a potential command-inject...

8.8CVSS5.9AI score0.00428EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/24 1:17 p.m.2 views

CVE-2026-33310

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...

8.8CVSS5.9AI score0.00428EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/24 1:17 p.m.3 views

CVE-2026-33310 Intake has a Command Injection via shell() Expansion in Parameter Defaults

Intake is a package for finding, investigating, loading and disseminating data. Prior to version 2.0.9, the shell syntax within parameter default values appears to be automatically expanded during the catalog parsing process. If a catalog contains a parameter default such as shell, the command ma...

8.8CVSS5.9AI score0.00428EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-1897

Malware in sbrugna...

9.8CVSS9.5AI score0.02442EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-14555

Malware in sbrugna...

10CVSS9.4AI score0.01846EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-23063

Malware in sbrugna...

8.8CVSS8.6AI score0.00788EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2020-10050

Malware in sbrugna...

8.8CVSS8.7AI score0.00969EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2022-33702

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01231EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2021-31710

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00479EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2022-7514

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.02906EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/22 11:11 p.m.6 views

CVE-2022-36226

SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...

7.2CVSS7AI score0.00909EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:10 p.m.4 views

CVE-2021-44912

In XE 1.116, when uploading the Normal button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restricts the PHP type, uploading HTML-type files leads to stored XSS vulnerabilities. If the .htaccess configuration is...

5.4CVSS6AI score0.00479EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 4:1 p.m.5 views

CVE-2020-18121

A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to modify .php files, leading to getshell...

8.8CVSS6.7AI score0.00969EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:19 p.m.5 views

CVE-2020-21787

CRMEB 3.1.0+ is vulnerable to File Upload Getshell via /crmeb/crmeb/services/UploadService.php...

10CVSS6.9AI score0.01846EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:18 p.m.5 views

CVE-2020-21786

In IBOS 4.5.4 Open, Arbitrary File Inclusion causes getshell via /system/modules/dashboard/controllers/CronController.php...

9.8CVSS7AI score0.01118EPSS
Exploits1
NVD
NVDadded 2024/10/25 6:15 p.m.15 views

CVE-2024-48700

Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the editpage.php component...

7.2CVSS0.00579EPSS
Exploits0References1
Rows per page
Query Builder