Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2004-0651

Malware in sbrugna...

7.2CVSS6.4AI score0.00131EPSS
Exploits0References8
CNNVD
CNNVDadded 2021/12/27 12:0 a.m.1 views

Avast antivirus 安全漏洞

Avast antivirus, a suite of antivirus software from the Czech company Avast, has an elevation of privilege vulnerability that could be exploited by a local attacker to gain elevated privileges by invoking non-essential powerful internal methods of the main antivirus service...

7.8CVSS5.6AI score0.0007EPSS
Exploits1References6
UbuntuCve
UbuntuCveadded 2015/04/01 12:0 a.m.29 views

CVE-2015-0802

Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of ...

5CVSS7.6AI score0.80386EPSS
Exploits4References2
OSV
OSVadded 2015/04/01 12:0 a.m.1 views

UBUNTU-CVE-2015-0802

Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of ...

5CVSS7.6AI score0.80386EPSS
Exploits4References3
Mozilla
Mozillaadded 2015/03/31 12:0 a.m.49 views

Windows can retain access to privileged content on navigation to unprivileged pages — Mozilla

Mozilla developer Bobby Holley reported that windows created to hold privileged UI content retained access to privileged internal methods if later navigated to unprivileged content. If a separate flaw was found that allowed for web content to reference these privileged windows, an attacker could...

5CVSS9.4AI score0.80386EPSS
Exploits4References2Affected Software3
PyPA
PyPAadded 2014/03/11 7:37 p.m.5 views

PYSEC-2014-60

The object manager implementation objectmanager.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly restrict access to internal methods, which allows remote attackers to obtain sensitive information via a crafted request...

5CVSS6.5AI score0.00319EPSS
Exploits0References4Affected Software1
NVD
NVDadded 2004/08/06 4:0 a.m.9 views

CVE-2004-0652

BEA WebLogic Server and WebLogic Express 7.0 through 7.0 Service Pack 4, and 8.1 through 8.1 Service Pack 2, allows attackers to obtain the username and password for booting the server by directly accessing certain internal methods...

7.2CVSS6.7AI score0.00131EPSS
Exploits0References7
Cvelist
Cvelistadded 2004/07/13 4:0 a.m.14 views

CVE-2004-0652

BEA WebLogic Server and WebLogic Express 7.0 through 7.0 Service Pack 4, and 8.1 through 8.1 Service Pack 2, allows attackers to obtain the username and password for booting the server by directly accessing certain internal methods...

6.7AI score0.00131EPSS
Exploits0References7
CERT
CERTadded 2004/04/22 12:0 a.m.24 views

BEA WebLogic Server internal methods may disclose sensitive information

Overview There is a vulnerability in BEA WebLogic Server that could allow users to obtain the credentials of the user who booted the server. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure for developing, integrating, securing, and managing...

7.3AI score
Exploits0References3
Rows per page
Query Builder