Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-13830

Malware in sbrugna...

9.8CVSS5.9AI score0.00347EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/10/06 12:0 a.m.2 views

PT-2025-40942

Name of the Vulnerable Software and Affected Versions ILIAS versions up to 8.23 ILIAS versions up to 9.13 ILIAS versions up to 10.1 Description A flaw exists due to deserialization in the unserialize function of the Test Import component. This manipulation can be initiated remotely. Recommendatio...

6.5CVSS5.2AI score0.00185EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2025/08/24 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2017-0919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component...

7.5CVSS7.5AI score0.00038EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.1 views

PrestaShop 安全漏洞

PrestaShop is an open source e-commerce solution from the American company PrestaShop. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop version v8.2.0, which stems from a PHAR deserialization issue in...

6.5CVSS6.8AI score0.00994EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/23 8:26 a.m.3 views

CVE-2024-40500

Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component...

8.8CVSS7.1AI score0.02122EPSS
Exploits1References1
NVD
NVDadded 2024/08/12 5:15 p.m.12 views

CVE-2024-40500

Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component...

8.8CVSS0.02122EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/08/12 12:0 a.m.2 views

PT-2024-28880 · Martin Kucej · I-Librarian

Name of the Vulnerable Software and Affected Versions: Martin Kucej i-librarian versions 5.11.0 and before Description: The issue allows a local attacker to execute arbitrary code via the search function in the import component. This is a Cross Site Scripting vulnerability. Recommendations: For...

8.8CVSS7.2AI score0.02122EPSS
Exploits1References7
CVE
CVEadded 2024/08/12 12:0 a.m.47 views

CVE-2024-40500

CVE-2024-40500 affects Martin Kucej i-librarian versions 5.11.0 and earlier. Description: a Cross-Site Scripting vulnerability in the import component’s search function can allow a local attacker to execute arbitrary code. The issue is due to improper handling in the search/import flow. Impact is...

8.8CVSS6.8AI score0.02122EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/08/12 12:0 a.m.11 views

CVE-2024-40500

Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component...

7.1AI score0.02122EPSS
Exploits1References2
CNNVD
CNNVDadded 2024/08/12 12:0 a.m.2 views

i-librarian 安全漏洞

i-librarian is an online service from Martin Kucej Personal Developer that will organize your PDF files and office document collections. A security vulnerability exists in i-librarian v.5.11.0 and earlier versions, which stems from the presence of a cross-site scripting vulnerability that allows ...

8.8CVSS6.6AI score0.02122EPSS
Exploits1References3
Cvelist
Cvelistadded 2024/08/12 12:0 a.m.11 views

CVE-2024-40500

Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component...

0.02122EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/03/03 12:0 a.m.3 views

PT-2023-16792 · Unknown · Kylin-Activation

Name of the Vulnerable Software and Affected Versions: kylin-activation versions prior to 1.3.11-23 and 1.30.10-5.p23 Description: A critical issue was found in the File Import component of kylin-activation, leading to improper authorization. The attack must be approached locally. The exploit has...

8.4CVSS7.2AI score0.00069EPSS
Exploits1References5
Prion
Prionadded 2018/07/03 9:29 p.m.23 views

Authorization

GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component resulting in an attacker being able to perform operations under a group in which they were previously unauthorized...

5CVSS7.4AI score0.00038EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2018/07/03 9:29 p.m.17 views

CVE-2017-0919

GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component resulting in an attacker being able to perform operations under a group in which they were previously unauthorized...

7.5CVSS6.9AI score
Exploits0References1
Debian CVE
Debian CVEadded 2018/07/03 9:0 p.m.23 views

CVE-2017-0919

Removed by vendor...

7.5CVSS7.1AI score0.00038EPSS
Exploits0
Cvelist
Cvelistadded 2018/07/03 9:0 p.m.24 views

CVE-2017-0919

GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component resulting in an attacker being able to perform operations under a group in which they were previously unauthorized...

7.5AI score0.00038EPSS
Exploits0References1
CNVD
CNVDadded 2018/03/22 12:0 a.m.3 views

Gitlab project import component remote code execution vulnerability

GitLab is a set of open source applications developed using Ruby on Rails to implement a self-hosted Git version control system project repository , which has similar features to Github , you can access the project's file content , commit history , bug lists , etc. GitLab Community Edition CE is...

7.8CVSS7.1AI score0.04156EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2018/03/18 12:0 a.m.1 views

PT-2018-16134 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: Gitlab Community and Enterprise Editions version 10.3.3 Description: The issue is related to an insecure temporary file in the project import component, which can result in remote code execution. Recommendations: For Gitlab Community and...

9.8CVSS7.4AI score0.06158EPSS
Exploits1References21
Rows per page
Query Builder