Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/05/18 12:0 a.m.6 views

MongoDB Server 安全漏洞

MongoDB Server is an open-source NoSQL database developed by MongoDB, a US-based company. This database offers features such as collection-oriented storage, dynamic querying, data replication, and automatic failover. There were security vulnerabilities in MongoDB Server versions prior to 7.0...

7.1CVSS5.8AI score0.00044EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/11/16 12:0 a.m.3 views

PT-2022-6567

Name of the Vulnerable Software and Affected Versions Python Packaging Authority PyPA setuptools versions 65.3.0 through 65.5.0 Description The issue is related to insufficient input validation when processing HTML content, allowing remote attackers to cause a denial of service via crafted HTML i...

9.8CVSS6.8AI score0.07274EPSS
Exploits7References110
ATTACKERKB
ATTACKERKBadded 2022/04/08 9:15 p.m.3 views

CVE-2022-26180

qdPM 9.2 allows Cross-Site Request Forgery CSRF via the index.php/myAccount/update URI...

8.8CVSS5.8AI score0.00457EPSS
Exploits4References3
OSV
OSVadded 2022/04/08 9:15 p.m.1 views

CVE-2022-26180

qdPM 9.2 allows Cross-Site Request Forgery CSRF via the index.php/myAccount/update URI...

8.8CVSS5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2016/07/14 12:0 a.m.24 views

Fedora 22 : mediawiki (2015-122a831a05)

T94116 SECURITY: Compare API watchlist token in constant time - T97391 SECURITY: Escape error message strings in thumb.php - T106893 SECURITY: Don't leak autoblocked IP addresses on Special:DeletedContributions - T102562 Fix InstantCommons parameters to handle the new HTTPS-only policy of...

5CVSS5.3AI score0.00451EPSS
Exploits0References2
Atlassian
Atlassianadded 2007/03/27 7:41 a.m.15 views

Deleting a custom field which has an issue security scheme or permission scheme on it does not update the index and issue navigator is out of date

emphasized textSimilar to JRA-12410 - deleting a custom field does not adequately clean up after itself. Specifically, affected issues are not reindexed so the updated security and permission aspects are not reflected in search results which is a security hole. Note that a naive fix may produce...

0.3AI score
Exploits0Affected Software1
Atlassian
Atlassianadded 2007/03/27 7:41 a.m.16 views

Deleting a custom field which has an issue security scheme or permission scheme on it does not update the index and issue navigator is out of date

Similar to JRA-12410 - deleting a custom field does not adequately clean up after itself. Specifically, affected issues are not reindexed so the updated security and permission aspects are not reflected in search results which is a security hole. Note that a naive fix may produce performance...

0.3AI score
Exploits0Affected Software1
Rows per page
Query Builder