Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-5356

Malicious code in bioql PyPI...

4.4CVSS6.6AI score0.00094EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-35778

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.02538EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/05/10 12:0 a.m.1 views

GL.iNet devices 安全漏洞

GL.iNet devices are a series of hardware devices from China's Guanglian Zhitong GL.iNet company. A security vulnerability exists in GL.iNet devices prior to version 3.216, which can be exploited to install arbitrary software via the software installation feature...

9.8CVSS8.5AI score0.00607EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2023/05/09 12:0 a.m.3 views

PT-2023-23353 · Gl.Inet · Gl.Inet

Name of the Vulnerable Software and Affected Versions: GL.iNet devices versions prior to 3.216 Description: An issue was discovered that allows injecting arbitrary parameters in a request to cause opkg to obtain a list of files in a specific directory, by using the regex feature in a package name...

7.5CVSS7.5AI score0.00322EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2022/12/01 12:0 a.m.2 views

PT-2022-19867 · Western Digital · Sandisk Ibi +1

Name of the Vulnerable Software and Affected Versions: Western Digital My Cloud Home affected versions not specified Western Digital My Cloud Home Duo affected versions not specified SanDisk ibi affected versions not specified Description: A path traversal issue was addressed in the mentioned...

7.8CVSS7.6AI score0.00092EPSS
Exploits0References3
CNVD
CNVDadded 2019/12/18 12:0 a.m.2 views

Yarn Posterior Link Vulnerability

Yarn is an open source package installation, management tools. A security vulnerability exists in versions of Yarn prior to 1.21.1, which stems from a package installation feature that can be used to create arbitrary symbolic links on the host filesystem. An attacker can exploit this vulnerabilit...

7.8CVSS6.9AI score0.00546EPSS
Exploits1References1
NVD
NVDadded 2019/05/15 4:29 p.m.8 views

CVE-2019-3727

Dell EMC RecoverPoint versions prior to 5.1.3 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an OS command injection vulnerability in the installation feature of Boxmgmt CLI. A malicious boxmgmt user may potentially be able to execute arbitrary commands as root...

7.2CVSS6.9AI score0.00065EPSS
Exploits0References2
OSV
OSVadded 2019/05/15 4:29 p.m.1 views

CVE-2019-3727

Dell EMC RecoverPoint versions prior to 5.1.3 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an OS command injection vulnerability in the installation feature of Boxmgmt CLI. A malicious boxmgmt user may potentially be able to execute arbitrary commands as root...

6.7CVSS6.8AI score0.00065EPSS
Exploits0References2
Cvelist
Cvelistadded 2019/05/15 3:45 p.m.15 views

CVE-2019-3727 OS command injection vulnerability

Dell EMC RecoverPoint versions prior to 5.1.3 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an OS command injection vulnerability in the installation feature of Boxmgmt CLI. A malicious boxmgmt user may potentially be able to execute arbitrary commands as root...

6.4CVSS7.1AI score0.00065EPSS
Exploits0References2
Rows per page
Query Builder