Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Veracode
Veracodeadded 2026/04/15 3:32 p.m.6 views

Cross-site Scripting (XSS)

Unhead is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper decoding and validation of HTML entities in URI schemes, which allows an attacker to bypass protocol checks using padded entities and inject malicious scripts into the rendered HTML...

6.1CVSS5.7AI score0.00089EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/02/28 1:27 p.m.0 views

USN-6667-1 libcpanel-json-xs-perl vulnerability

It was discovered that Cpanel-JSON-XS incorrectly decoded certain data. A remote attacker could use this issue to cause Cpanel-JSON-XS to crash, resulting in a denial of service, or possibly obtain sensitive information...

9.1CVSS5.8AI score0.00104EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2022/12/07 7:19 p.m.28 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.4 (python-ujson) security update

An update for python-ujson is now available for Red Hat OpenStack Platform 16.2.4 Train for Red Hat Enterprise Linux RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.9AI score0.00173EPSS
Exploits1References3
CNNVD
CNNVDadded 2022/07/05 12:0 a.m.1 views

UltraJSON 安全漏洞

UltraJSON is an open source, ultra-fast JSON encoder and decoder written in pure C and bundled with Python 3.7+. A security vulnerability exists in versions of UltraJSON prior to 5.4.0, which stems from an inability to properly decode certain characters, allowing for potential key obfuscation and...

7.5CVSS7.3AI score0.00069EPSS
Exploits1References10
OSV
OSVadded 2019/06/05 3:31 p.m.0 views

USN-4010-1 exim4 vulnerability

It was discovered that Exim incorrectly handled certain decoding operations. A remote attacker could possibly use this issue to execute arbitrary commands...

10CVSS7.5AI score0.93918EPSS
Exploits27References2
CNVD
CNVDadded 2016/06/07 12:0 a.m.1 views

Puppet Server and Agent Unauthorized Access Vulnerability

Puppet Server and Agent are both U.S. Puppet Labs based on the client/server C/S architecture of the configuration management tool, the tool can be used to manage configuration files, users, cron tasks, packages, system services and so on. An unauthorized access vulnerability exists in Puppet...

9.8CVSS9.2AI score0.0017EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2012/11/20 9:43 p.m.1 views

Mozilla: Improper character decoding in HZ-GB-2312 charset (MFSA 2012-101)

The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly handle a tilde character in proximity to a chunk delimiter, which allows remote...

4.3CVSS7.3AI score0.01278EPSS
Exploits1References5
NVD
NVDadded 2009/05/26 9:30 p.m.14 views

CVE-2008-3869

Heap-based buffer overflow in sadmind in Sun Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted RPC request, related to improper decoding of request parameters...

10CVSS7.8AI score0.3328EPSS
Exploits1References12
Rows per page
Query Builder