Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2026/05/01 11:16 a.m.0 views

CVE-2026-42404

Apache Neethi does not impose any restrictions on URIs when manually fetching remote policy references through the PolicyReference API. When an application explicitly calls the API to retrieve a policy from a remote URI, an outbound request is made for arbitrary protocols and internal IP...

7.2CVSS0.00045EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2024/12/03 2:54 p.m.711 views

Exploit for Uncontrolled Resource Consumption in Ietf Http

CVE-2023-44487 - HTTP/2 Rapid Reset Exploit PoC --- Desc...

7.5CVSS8AI score0.944EPSS
Exploits19
OSV
OSVadded 2024/03/14 5:7 p.m.40 views

CVE-2024-28849 Proxy-Authorization header kept across hosts in follow-redirects

follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatically follows redirects. In affected versions follow-redirects only clears authorization header during cross-domain redirect, but keep the proxy-authentication header which contains credentials...

6.5CVSS6.6AI score0.01106EPSS
Exploits1References8
RedHat Linux
RedHat Linuxadded 2024/02/12 8:44 a.m.36 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS7.4AI score0.09621EPSS
Exploits1References7
OSV
OSVadded 2018/06/20 9:29 p.m.1 views

CVE-2018-0301

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to craft a packet to the management interface on an affected system, causing a buffer overflow. The vulnerability is due to incorrect input validation in the authentication module of the...

9.8CVSS6.5AI score0.01817EPSS
Exploits0References3
CNVD
CNVDadded 2018/02/13 12:0 a.m.1 views

NetEx HyperIP Post-Auth Remote Command Execution Vulnerability

HyperIP is a WAN optimized virtual appliance. Deploying HyperIP enables data replication, backup, recovery and data center migration. HyperIP has a remote command execution vulnerability in its implementation. The principle of this vulnerability is that setting the setval parameter as a malformed...

8AI score
Exploits0References1
Citrix
Citrixadded 2017/08/21 12:0 a.m.4 views

Reciever 4.8 - Unable to open the Url -Only Http and Https Urls can be opened

when launching published content from receiver 4.6 onward versions, we get error :"Only Http and Https Urls can be opened"...

7.1AI score
Exploits0
OSV
OSVadded 2016/12/10 2:59 a.m.2 views

CVE-2016-9832

PricewaterhouseCoopers PwC ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via 1 SAPGUI or 2 Internet Communication Framework ICF over HTTP or HTTPS, as demonstrated by WEBGUI or Report...

9.9CVSS6.1AI score
Exploits0References6
Rows per page
Query Builder