Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CVE
CVEadded 2026/02/24 7:40 a.m.13 views

CVE-2025-40538

CVE-2025-40538 affects SolarWinds Serv-U; it describes a broken access control vulnerability that, if abused, enables a malicious actor with domain/admin privileges to create a system administrator account and execute arbitrary code with privileged access. Impact per sources: high/critical across...

9.1CVSS6AI score0.00055EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/24 7:40 a.m.4 views

CVE-2025-40538

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a system admin user and execute arbitrary code as a privileged account via domain admin or group admin privileges. This issue requires administrative privileges to abuse. On...

9.1CVSS6AI score0.00055EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-58465

Malicious code in bioql PyPI...

7.2CVSS7AI score0.00065EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-30217

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00058EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/09/26 12:0 a.m.1 views

GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE is a content management system from the American company GitLab. A security vulnerability exists in GitLab Enterprise Edition versions 16.6 through 18.2.7 prior, 18.3 through 18.3.3 prior, and 18.4 through 18.4.1 prior, which stems from the potential for a developer...

8.8CVSS6.1AI score0.00009EPSS
Exploits0References4
OSV
OSVadded 2023/11/29 5:15 p.m.3 views

CVE-2023-6218

In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a privilege escalation path associated with group administrators has been identified. It is possible for a group administrator to elevate a group members permissions to the role of an...

7.2CVSS5.7AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/11/20 12:0 a.m.3 views

PT-2023-7247 · Ipswitch · Moveit Transfer

Name of the Vulnerable Software and Affected Versions: MOVEit Transfer versions prior to 2022.0.9 14.0.9 MOVEit Transfer versions prior to 2022.1.10 14.1.10 MOVEit Transfer versions prior to 2023.0.7 15.0.7 Description: A privilege escalation path associated with group administrators has been...

8.3CVSS7.1AI score0.00065EPSS
Exploits0References7
CNNVD
CNNVDadded 2021/10/29 12:0 a.m.3 views

GitLab 信息泄露漏洞

GitLab is a self-hosted, Git version control system project repository application developed using Ruby on Rails by GitLab, Inc. The application can be used to access a project's file content, commit history, bug list, etc. An information disclosure vulnerability exists in GitLab CE/EE, which ste...

4CVSS5.6AI score0.00293EPSS
Exploits0References6
Hacker One
Hacker Oneadded 2017/09/14 4:36 a.m.13 views

Mail.ru: A manager of a determinate group of users still might have access to any user account from any group that he doesn't administrate anymore.

Domain, site, application: biz.mail.ru Testing environment: Lastest Chrome Steps to reproduce: Ok, this one is pretty much depending on scenario, so lets assume that there is the Evil Manager exists with network knowledge on higher than medium level. At first lets say that there is such role as...

6.8AI score
Exploits0
Rows per page
Query Builder