Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

GithubExploit
GithubExploitadded 2026/04/13 2:36 p.m.81 views

Exploit for CVE-2025-66849

CVE-2025-66849 Ghost CMS Privilege Escalation PoC Summar...

5.8AI score
Exploits1
OSV
OSVadded 2026/01/07 12:17 p.m.2 views

CVE-2025-31963

Improper authentication and missing CSRF protection in the local setup interface component in HCL BigFix IVR version 4.2 allows a local attacker to perform unauthorized configuration changes via unauthenticated administrative configuration requests...

3.3CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2026/01/07 12:17 p.m.1 views

CVE-2025-31963

Improper authentication and missing CSRF protection in the local setup interface component in HCL BigFix IVR version 4.2 allows a local attacker to perform unauthorized configuration changes via unauthenticated administrative configuration requests...

3.3CVSS0.00003EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/07 7:5 a.m.20 views

CVE-2025-31963 HCL BigFix IVR is impacted by improper authentication and missing CSRF protection

Improper authentication and missing CSRF protection in the local setup interface component in HCL BigFix IVR version 4.2 allows a local attacker to perform unauthorized configuration changes via unauthenticated administrative configuration requests...

2.9CVSS0.00003EPSS
Exploits0References1
CVE
CVEadded 2026/01/07 7:5 a.m.7 views

CVE-2025-31963

Summary (CVE-2025-31963) : In HCL BigFix IVR version 4.2, the local setup interface component suffers from improper authentication and missing CSRF protection. This allows a local attacker to perform unauthorized configuration changes through unauthenticated administrative configuration requests....

3.3CVSS6.5AI score0.00003EPSS
Exploits0References1Affected Software1
GithubExploit
GithubExploitadded 2025/04/25 6:59 a.m.764 views

Exploit for Use of Persistent Cookies Containing Sensitive Information in Palletsprojects Flask

CVE-2023-30861 PoC Proof of Concept ⚠️ 주의 CAUTION...

7.5CVSS7.1AI score0.00221EPSS
Exploits1
CNVD
CNVDadded 2020/11/03 12:0 a.m.1 views

Nacos Information Disclosure Vulnerability

nacos is a dynamic service discovery, configuration and service management platform for Alibaba in China. The software supports both DNS-based and RPC-based service discovery, and provides features such as providing real-time health checks and blocking services from sending requests to unhealthy...

5.3CVSS6.9AI score0.00379EPSS
Exploits1References1
n0where
n0whereadded 2018/09/05 4:19 p.m.17 views

CLI for Ephemeral Penetration Testing: hideNsneak

This application assists in managing attack infrastructure for penetration testers by providing an interface to rapidly deploy, manage, and take down various cloud services. These include VMs, domain fronting, Cobalt Strike servers, API gateways, and firewalls. hideNsneak provides a simple...

1.2AI score
Exploits0References1
Rows per page
Query Builder