Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

wpexploit
wpexploitadded 2023/09/19 12:0 a.m.192 views

File Manager Pro < 1.8.1 - Admin+ Stored Cross-Site Scripting

Description The plugin does not adequately validate and escape some inputs, leading to XSS by high-privilege users. As an admin, open the File Manager and run the following JS code: fetch"http://localhost:10008/wp-admin/admin-ajax.php", "headers": "content-type": "application/x-www-form-urlencode...

4.8CVSS5AI score0.00402EPSS
Exploits2
NVD
NVDadded 2022/12/22 6:15 p.m.23 views

CVE-2022-23541

jsonwebtoken is an implementation of JSON Web Tokens. Versions = 8.5.1 of jsonwebtoken library can be misconfigured so that passing a poorly implemented key retrieval function referring to the secretOrPublicKey argument from the readme link will result in incorrect verification of tokens. There i...

6.3CVSS0.00753EPSS
Exploits0References4
BDU FSTEC
BDU FSTECadded 2022/07/18 12:0 a.m.5 views

The vulnerability of the Display Key Combination Fast Access swhkd implementation in the Wayland display server protocol involves an uncontrolled resource consumption, allowing attackers to cause service failures.

The vulnerability of the Display KeyCombination Scanner daemon in the Wayland display server protocol implementation is related to an uncontrolled resource consumption during syntax analysis of files with the -c parameter. Exploiting this vulnerability can allow attackers to cause service failure...

5.3CVSS5.9AI score0.00822EPSS
Exploits0References6Affected Software1
Packet Storm
Packet Stormadded 2021/01/27 12:0 a.m.340 views

Revive Adserver 5.1.0 Cross Site Scripting

======================================================================== Revive Adserver Security Advisory REVIVE-SA-2021-002 ------------------------------------------------------------------------ https://www.revive-adserver.com/security/revive-sa-2021-002...

6.3AI score0.22064EPSS
Exploits3
Packet Storm
Packet Stormadded 2020/04/21 12:0 a.m.106 views

QRadar Community Edition 7.3.1.6 Cross Site Scripting

------------------------------------------------------------------------ Reflected Cross-Site Scripting in QRadar Forensics link analysis page ------------------------------------------------------------------------ Yorick Koster, September 2019...

7.4AI score
Exploits0
myhack58
myhack58added 2006/09/22 12:0 a.m.8 views

The cafe's invasion and the cafe boss fight-bug warning-the black bar safety net

We're and the owner of the cafe fight to the end to succeed must know ourselves to win every battle. First let's take a look at the cafe owners now generally under some kind of obstacle to it: The primary 1. Prohibition of“Run”; 2. The prohibition of the use of the menu bar on the right keys; 3....

0.5AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2004/09/15 12:0 a.m.41 views

RHEL 3 : gtk2 (RHSA-2004:466)

Updated gtk2 packages that fix several security flaws and bugs are now available. The gtk2 package contains the GIMP ToolKit GTK+, a library for creating graphical user interfaces for the X Window System. During testing of a previously fixed flaw in Qt CVE-2004-0691, a flaw was discovered in the...

7.5CVSS6.1AI score0.14694EPSS
Exploits0References11
Rows per page
Query Builder