CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

973 matches found

NVD•added 2020/01/31 6:15 p.m.•6 views

CVE-2020-5234

MessagePack for C and Unity before version 1.9.11 and 2.1.90 has a vulnerability where untrusted data can lead to DoS attack due to hash collisions and stack overflow. Review the linked GitHub Security Advisory for more information and remediation steps...

6.8CVSS5.3AI score0.00549EPSS

Exploits0References4

Cvelist•added 2020/01/31 5:50 p.m.•9 views

CVE-2020-5234 Untrusted data can lead to DoS attack in MessagePack for C# and Unity

MessagePack for C and Unity before version 1.9.11 and 2.1.90 has a vulnerability where untrusted data can lead to DoS attack due to hash collisions and stack overflow. Review the linked GitHub Security Advisory for more information and remediation steps...

4.8CVSS6.4AI score0.00549EPSS

Exploits0References4

CVE•added 2020/01/31 5:50 p.m.•116 views

CVE-2020-5234

CVE-2020-5234 affects MessagePack for C# and Unity before version 1.9.11 and 2.1.90, where deserializing untrusted data can cause a DoS via hash collisions or stack overflow. The issue is documented across multiple sources (NVD, GitHub advisory GHSA-7Q36-4XX7-XCXF, Red Hat/RH entries, OSV) and is...

6.8CVSS5.6AI score0.00549EPSS

Exploits0References4Affected Software1

Hacker One•added 2020/01/28 10:21 p.m.•89 views

GitHub Security Lab: CodeQL query for finding CSRF vulnerabilities in Spring applications

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2020/01/23 9:58 p.m.•85 views

GitHub Security Lab: CodeQL query to detect weak (duplicated) encryption keys for ASP.NET Telerik Upload

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2020/01/02 8:18 p.m.•33 views

GitHub Security Lab: Java (Maven): Use of insecure protocol to download/upload artifacts

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2019/12/18 7:15 p.m.•33 views

GitHub Security Lab: Netty HTTP Response Splitting (CRLF Injection) due to disabled header validation

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2019/12/18 7:13 p.m.•19 views

GitHub Security Lab: CodeQL query to detect insecure MaxLengthRequest values in ASP.NET applications

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2019/12/18 7:12 p.m.•16 views

GitHub Security Lab: CodeQL query to detect pages with validationRequest disabled

This bug was reported directly to GitHub Security Lab...

Hacker One•added 2019/12/18 7:8 p.m.•12 views

GitHub Security Lab: Adds CodeQL query to check for insecure RequestValidationMode in ASP.NET

This bug was reported directly to GitHub Security Lab...

GithubExploit•added 2019/11/12 1:14 a.m.•12 views

Exploit for CVE-2018-11776

GitHub Security Lab This is the main git repository of GitHu...

9.8CVSS7.9AI score0.94431EPSS

vulnersOsv•added 2019/04/19 4:55 p.m.•0 views

abeja-sdk (>=0.2.0rc1 <=1.1.0rc1), abejacli (>=1.0.2 <=1.0.2rc1) +816 more potentially affected by CVE-2019-11324 via urllib3 (>=1.10.2 <=1.24.1)

urllib3 PYPI version =1.10.2, =0.2.0rc1, =1.0.2, =0.18.0.3, =0.5.0, =0.70.0, =0.0.1, =0.5.0, =1.1.0rc6, =0.8.0, =0.0.2, =1.1.2 and more Source cves: CVE-2019-11324 Source advisory: OSV:GHSA-MH33-7RRQ-662W...

7.5CVSS6.7AI score0.01015EPSS

Into the symmetry•added 2017/05/30 8:36 a.m.•28 views

Cross-origin brute-forcing of Github SAML and 2FA recovery codes

Yesterday while reading my Twitter stream I found this interesting article about downloading GitHub SSO bypass codes. Same as Yasin Soliman I was invited to a Github pre-release of the organisation SAML single sign-on SSO private program. And same as him I found an issue in the same endpoint. So ...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by