Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/06/02 2:30 a.m.8 views

EUVD-2026-33878

A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64decode of the file /plus/download.php?open=1. This manipulation of the argument Link causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and...

6.5CVSS6.3AI score0.00032EPSS
Exploits0References4
OSV
OSVadded 2022/08/05 4:15 p.m.1 views

UBUNTU-CVE-2022-2497

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.6 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. A malicious developer could exfiltrate an integration's access token by modifying the integration URL...

8.5CVSS6.9AI score0.0159EPSS
Exploits0References2
OSV
OSVadded 2021/12/27 7:15 p.m.1 views

CVE-2021-21751

ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency between the front and back verifications when configuring the large screen page, an attacker with high privileges could exploit this vulnerability to tamper with the URL and cause service exception...

8.1CVSS7.3AI score0.00372EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2021/03/14 3:42 p.m.15 views

Security Bulletin: IBM API Connect's API Manager is vulnerable to invitation and registration link tampering (CVE-2021-20440)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2021-20440 DESCRIPTION: IBM API Manager does not restrict member registration to the intended recepient. An attacker who is a valid user in the user registry used by API Manager can use a stolen...

6.4CVSS0.8AI score0.0018EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologiesadded 2021/01/30 12:0 a.m.2 views

PT-2021-14390 · Minio +1 · Minio +1

Name of the Vulnerable Software and Affected Versions: MinIO versions prior to RELEASE.2021-01-30T00-20-58Z Description: The issue is related to a server-side request forgery vulnerability. The target application may have functionality for importing data from a URL, publishing data to a URL, or...

7.7CVSS5.9AI score0.91895EPSS
Exploits2References21
CNVD
CNVDadded 2020/11/04 12:0 a.m.2 views

Unauthorized Access Vulnerability in the Threat Awareness Platform of Beijing Weibu Online Technology Co.

Beijing MicroStep Online Technology Co., Ltd. provides threat detection products and services, and is committed to becoming a threat discovery and response expert for enterprise customers. An unauthorized access vulnerability exists in the threat awareness platform of Beijing MicroStep Online...

6.8AI score
Exploits0
CNVD
CNVDadded 2018/05/29 12:0 a.m.2 views

Moodle File Download Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security vulnerability exists in the Moodle 3.x version. The vulnerability can be...

6.5CVSS7AI score0.00116EPSS
Exploits0References1
Rows per page
Query Builder