Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2026/04/22 12:4 a.m.3 views

OSV-2026-608 Stack-buffer-overflow in is_http

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=504809218 Crash type: Stack-buffer-overflow READ Crash state: ishttp stungetmessagelenstr FuzzStunClient.c...

5.7AI score
Exploits0References1
OSV
OSVadded 2026/03/06 6:57 a.m.3 views

CVE-2026-29042 Nuclio Shell Runtime Command Injection Leading to Privilege Escalation

Nuclio is a "Serverless" framework for Real-Time Events and Data Processing. Prior to version 1.15.20, the Nuclio Shell Runtime component contains a command injection vulnerability in how it processes user-supplied arguments. When a function is invoked via HTTP, the runtime reads the...

9.3CVSS5.7AI score0.00281EPSS
Exploits1References6
Veracode
Veracodeadded 2022/07/08 8:18 a.m.33 views

HTTP Request Smuggling

llhttp is vulnerable to http request smuggling. The vulnerability exists in the http function in http.ts due to a lack of validation and parsing of Transfer-Encoding headers which allows an attacker to smuggle HTTP requests...

6.5CVSS7.1AI score0.86318EPSS
Exploits1References15Affected Software4
Veracode
Veracodeadded 2022/06/09 5:34 a.m.19 views

Path Traversal

github.com/gogs/gogs is vulnerable to path traversal. The vulnerability exists in the HTTP function in http.go due to a lack of input validation which allows a malicious user to craft an http request and gain access to unauthorized system data...

8.1CVSS7.8AI score0.00582EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2022/05/17 3:20 a.m.33 views

GHSA-GV98-G628-M9X5 Django Cross-site Scripting Vulnerability

The django.util.http.issafeurl function in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 does not properly handle leading whitespaces, which allows remote attackers to conduct cross-site scripting XSS attacks via a crafted URL, related to redirect URLs, as demonstrated by a...

6.1CVSS5.1AI score0.02154EPSS
Exploits1References17
OpenVAS
OpenVASadded 2019/12/03 12:0 a.m.9 views

TheServer Detection

Checks whether TheServer is present on the target system and if so, tries to figure out the installed version. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU...

0.4AI score
Exploits0
Debian CVE
Debian CVEadded 2016/07/25 2:0 p.m.40 views

CVE-2016-6294

Removed by vendor...

9.8CVSS8.7AI score0.06163EPSS
Exploits1
OpenVAS
OpenVASadded 2010/03/05 12:0 a.m.121 views

MoinMoin Wiki Version Detection

Detection of MoinMoin Wiki. This script detects the installed version of MoinMoin Wiki. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7AI score
Exploits0
UbuntuCve
UbuntuCveadded 2008/04/30 4:17 p.m.13 views

CVE-2008-2040

Stack-based buffer overflow in the HTTP::getAuthUserPass function core/common/http.cpp in Peercast 0.1218 and gnome-peercast allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a Basic Authentication string with a long 1 username or 2 password...

7.5CVSS6.1AI score0.3325EPSS
Exploits1References1
Rows per page
Query Builder