Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2025/06/27 11:31 a.m.5 views

CVE-2025-6762 diyhi bbs HTTP Header login getUrl server-side request forgery

A vulnerability classified as critical has been found in diyhi bbs up to 6.8. This affects the function getUrl of the file /admin/login of the component HTTP Header Handler. The manipulation of the argument Host leads to server-side request forgery. It is possible to initiate the attack remotely...

6.5CVSS7.2AI score0.00361EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/06/27 12:0 a.m.4 views

diyhi bbs 安全漏洞

diyhi bbs patrol cloud light forum system is a forum system for diyhi individual developers. A security vulnerability exists in diyhi bbs version 6.8 and earlier, which stems from improper manipulation of the Host parameter in the getUrl function of the HTTP header processing component, which cou...

7.2CVSS6.4AI score0.00361EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2022/01/04 3:15 p.m.3 views

CVE-2021-45980

Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via getURL in the JavaScript API...

7.8CVSS7.8AI score0.01524EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2021/10/14 12:0 a.m.58 views

Adobe Acrobat < 17.011.30204 / 20.004.30017 / 21.007.20099 Multiple Vulnerabilities (APSB21-104)

The version of Adobe Acrobat installed on the remote Windows host is a version prior to 17.011.30204, 20.004.30017, or 21.007.20099. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat Reader DC version 21.007.20095 and earlier, 21.007.20096 and earlier, 20.004.30015 and...

7.8CVSS6.7AI score0.53533EPSS
Exploits0References5
Packet Storm
Packet Stormadded 2013/06/30 12:0 a.m.25 views

Xorbin Digital Flash Clock 1.0 For WordPress XSS

==================================================================== Xorbin Digital Flash Clock 1.0 Plugin for Wordpress Flash-based XSS ==================================================================== Description: This plugin displays digital flash clock on your website. It's easy to use and...

0.2AI score0.01251EPSS
Exploits2
seebug.org
seebug.orgadded 2009/07/10 12:0 a.m.30 views

Winds3D Viewer GetURL()函数远程代码执行漏洞

BUGTRAQ ID: 35595 CVECAN ID: CVE-2009-2386 Awakening是一个功能强大的实时3D解决方案,Winds3D Viewer是Awakening的浏览器插件。 Winds3D Viewer以不安全的方式实现了GetURL函数: /----------- GetURLstring URL Description: Open browser to visit assigned URL returns: None - -----------/ 调用GetURL最终会执行相当于“ShellExecuteNULL, "open", URL, 0, 0,...

9.3CVSS6.4AI score0.05115EPSS
Exploits3
myhack58
myhack58added 2006/07/19 12:0 a.m.74 views

The use of Sina, Sohu domain steering-vulnerability warning-the black bar safety net

Article author: light and shadow Sources of information: the Red wolf security group www.wolfexp.net) To 1. Sina blog is an unfiltered script That simple point of it, the previous time to engage google cheat time want to use sina domain name turning. Because the blog's pr value is generally high,...

7.3AI score
Exploits0
Rows per page
Query Builder