Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-19066

Malicious code in bioql PyPI...

10CVSS6.6AI score0.00619EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-19067

Malicious code in bioql PyPI...

9.6CVSS6.5AI score0.00284EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/06/26 8:18 p.m.14 views

CVE-2025-52572

Hikka, a Telegram userbot, has vulnerability affects all users on all versions of Hikka. Two scenarios are possible. 1. Web interface does not have an authenticated session: attacker can use his own Telegram account to gain RCE to the server by authorizing in the dangling web interface. 2. Web...

10CVSS8.1AI score0.00619EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/26 8:18 p.m.14 views

CVE-2025-52571

Hikka is a Telegram userbot. A vulnerability affects all users of versions below 1.6.2, including most of the forks. It allows an unauthenticated attacker to gain access to Telegram account of a victim, as well as full access to the server. The issue is patched in version 1.6.2. No known...

9.6CVSS7.4AI score0.00284EPSS
Exploits0References1
NVD
NVDadded 2025/06/24 9:15 p.m.6 views

CVE-2025-52572

Hikka, a Telegram userbot, has vulnerability affects all users on all versions of Hikka. Two scenarios are possible. 1. Web interface does not have an authenticated session: attacker can use his own Telegram account to gain RCE to the server by authorizing in the dangling web interface. 2. Web...

10CVSS0.00619EPSS
Exploits0References2
OSV
OSVadded 2025/06/24 8:10 p.m.4 views

CVE-2025-52572 Hikka vulnerable to RCE through dangling web interface

Hikka, a Telegram userbot, has vulnerability affects all users on all versions of Hikka. Two scenarios are possible. 1. Web interface does not have an authenticated session: attacker can use his own Telegram account to gain RCE to the server by authorizing in the dangling web interface. 2. Web...

10CVSS7.7AI score0.00619EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/06/24 8:10 p.m.10 views

CVE-2025-52572 Hikka vulnerable to RCE through dangling web interface

Hikka, a Telegram userbot, has vulnerability affects all users on all versions of Hikka. Two scenarios are possible. 1. Web interface does not have an authenticated session: attacker can use his own Telegram account to gain RCE to the server by authorizing in the dangling web interface. 2. Web...

10CVSS0.00619EPSS
Exploits0References2
CVE
CVEadded 2025/06/24 8:10 p.m.18 views

CVE-2025-52572

Hikka (Telegram userbot) is affected by an RCE/account-takeover vulnerability via the web interface. If the web UI has no authenticated session, an attacker can abuse access via their own Telegram account to gain RCE on the server. If an authenticated session exists, users may be tricked into app...

10CVSS8AI score0.00619EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/24 8:7 p.m.4 views

CVE-2025-52571 Hikka vulnerable to RCE through edits in a channel

Hikka is a Telegram userbot. A vulnerability affects all users of versions below 1.6.2, including most of the forks. It allows an unauthenticated attacker to gain access to Telegram account of a victim, as well as full access to the server. The issue is patched in version 1.6.2. No known...

9.6CVSS7.3AI score0.00284EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/06/24 8:7 p.m.8 views

CVE-2025-52571 Hikka vulnerable to RCE through edits in a channel

Hikka is a Telegram userbot. A vulnerability affects all users of versions below 1.6.2, including most of the forks. It allows an unauthenticated attacker to gain access to Telegram account of a victim, as well as full access to the server. The issue is patched in version 1.6.2. No known...

9.6CVSS0.00284EPSS
Exploits0References2
CVE
CVEadded 2025/06/24 8:7 p.m.24 views

CVE-2025-52571

Hikka is a Telegram userbot vulnerable to an unauthenticated credential/remote access issue in all versions below 1.6.2. The root cause enables an attacker to gain access to a victim’s Telegram account and full control of the server. The vulnerability is patched in version 1.6.2; no public workar...

9.6CVSS7.3AI score0.00284EPSS
Exploits0References2
OSV
OSVadded 2025/06/24 8:7 p.m.6 views

CVE-2025-52571 Hikka vulnerable to RCE through edits in a channel

Hikka is a Telegram userbot. A vulnerability affects all users of versions below 1.6.2, including most of the forks. It allows an unauthenticated attacker to gain access to Telegram account of a victim, as well as full access to the server. The issue is patched in version 1.6.2. No known...

9.6CVSS7.1AI score0.00284EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/06/24 12:0 a.m.5 views

PT-2025-26780

Name of the Vulnerable Software and Affected Versions: Hikka versions all Description: The issue affects all users on all versions of Hikka, a Telegram userbot. Two scenarios are possible: 1. If the web interface does not have an authenticated session, an attacker can use their own Telegram accou...

10CVSS7.8AI score0.00619EPSS
Exploits0References11
VulnCheck KEV
VulnCheck KEVadded 2023/08/12 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-52572

Hikka, a Telegram userbot, has vulnerability affects all users on all versions of Hikka. Two scenarios are possible. 1. Web interface does not have an authenticated session: attacker can use his own Telegram account to gain RCE to the server by authorizing in the dangling web interface. 2. Web...

10CVSS5.8AI score0.00619EPSS
Exploits0References1
Rows per page
Query Builder