Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:45 a.m.8 views

CVE-2022-38066

An OS command injection vulnerability exists in the httpd SNMP functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP response can lead to arbitrary command execution. An attacker can send a network request to trigger this vulnerability...

8.8CVSS7.3AI score0.00434EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/12/24 12:0 a.m.2 views

TencentOS Server 4: python3.11 (TSSA-2025:0968)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0968 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.3AI score0.00215EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2005-3630

Malware in sbrugna...

5CVSS6.4AI score0.00979EPSS
Exploits1References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-30526

Malware in sbrugna...

9.3CVSS8.6AI score0.02581EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-16241

Malware in sbrugna...

7.5CVSS6.5AI score0.00891EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-1108

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00667EPSS
Exploits0References11
NVD
NVDadded 2025/08/06 12:15 a.m.2 views

CVE-2025-54571

ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. In versions 2.9.11 and below, an attacker can override the HTTP response’s Content-Type, which could lead to several issues depending on the HTTP scenario. For example, we have demonstrate...

6.9CVSS0.00305EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 9:3 a.m.6 views

CVE-2019-19089

For ABB eSOMS versions 4.0 to 6.0.3, the X-Content-Type-Options Header is missing in the HTTP response, potentially causing the response body to be interpreted and displayed as different content type other than declared. A possible attack scenario would be unauthorized code execution via text...

6.1CVSS7.4AI score0.00371EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/21 11:6 p.m.11 views

CVE-2008-7296

Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Transport Security HSTS includeSubDomains...

5.8CVSS6.4AI score0.00435EPSS
Exploits0References1
CNVD
CNVDadded 2025/02/06 12:0 a.m.8 views

IBM Cloud Pak System Information Disclosure Vulnerability (CNVD-2025-02817)

IBM Cloud Pak System is a full-stack, converged infrastructure with configurable, pre-integrated software from International Business Machines IBM. The product supports deploying, managing and moving application environments across hybrid clouds. An information disclosure vulnerability exists in...

7.5CVSS5.7AI score0.00096EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/01/22 12:0 a.m.1 views

PT-2025-14571

Name of the Vulnerable Software and Affected Versions: libsoup affected versions not specified Description: A flaw was found in libsoup, making the package vulnerable to a heap buffer over-read when sniffing content via the skip insight whitespace function. Libsoup clients may read one byte...

9CVSS7.2AI score0.00986EPSS
Exploits3References241
OSV
OSVadded 2016/06/11 12:0 a.m.14 views

DLA-511-1 libtorrent-rasterbar - security update

Bulletin has no description...

7.5CVSS7.5AI score0.01385EPSS
Exploits0
NVD
NVDadded 2004/10/18 4:0 a.m.8 views

CVE-2004-1609

SalesLogix 6.1 includes usernames, passwords, and other sensitive information in the headers of an HTTP response, which could allow remote attackers to gain access...

5CVSS6.5AI score0.00763EPSS
Exploits1References7
Rows per page
Query Builder