Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2025/11/26 4:56 p.m.0 views

CVE-2025-11921

iStats contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via command injection.This issue affects iStats: 7.10.4...

8.5CVSS7.3AI score0.00053EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/24 2:22 p.m.4 views

CVE-2025-11921 iStat Menus 7.10.4 - Local Privilege Escalation

iStats contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via command injection.This issue affects iStats: 7.10.4...

8.5CVSS0.00053EPSS
Exploits0References3
CVE
CVEadded 2025/11/24 2:22 p.m.8 views

CVE-2025-11921

CVE-2025-11921 affects iStats (iStat Menus) 7.10.4, where an insecure XPC service allows local, unprivileged users to escalate to root via command injection. CVSS indicates local access with high impact on confidentiality, integrity, and availability. Public references identify a patch path; iSta...

8.5CVSS6.9AI score0.00053EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/11/24 2:22 p.m.4 views

CVE-2025-11921 iStat Menus 7.10.4 - Local Privilege Escalation

iStats contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via command injection.This issue affects iStats: 7.10.4...

8.5CVSS6.9AI score0.00053EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2020-10232

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In version 4.8.0 and earlier of The Sleuth Kit TSK, there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfsistat in...

9.8CVSS8.3AI score0.01411EPSS
Exploits0References2
Openbugbounty
Openbugbountyadded 2020/10/25 10:55 p.m.11 views

istat.it Cross Site Scripting vulnerability OBB-1447851

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
AlpineLinux
AlpineLinuxadded 2020/03/08 11:52 p.m.35 views

CVE-2020-10232

In version 4.8.0 and earlier of The Sleuth Kit TSK, there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfsistat in fs/yaffs.c...

9.8CVSS9.7AI score0.01411EPSS
Exploits0
Openbugbounty
Openbugbountyadded 2017/09/15 12:50 p.m.15 views

search.istat.it XSS vulnerability

Open Bug Bounty ID: OBB-296181 Description| Value ---|--- Affected Website:| search.istat.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
n0where
n0whereadded 2010/11/07 8:41 p.m.44 views

Injecting Fake Updates: Evilgrade

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates. It comes with pre-made binaries agents, a working default configuration for fast pentests, and has it’s own WebServer and DNSServer modules. Easy to set up new...

0.8AI score
Exploits0References1
Rows per page
Query Builder