Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2026/05/07 10:16 p.m.11 views

CVE-2026-6736

An authentication bypass vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to create a local user account, bypassing the configured external identity provider. When external authentication was enabled, the signup endpoint did not properly enforce th...

6.5CVSS0.00256EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/07 9:14 p.m.9 views

CVE-2026-6736

An authentication bypass vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to create a local user account, bypassing the configured external identity provider. When external authentication was enabled, the signup endpoint did not properly enforce th...

6.3CVSS5.8AI score0.00256EPSS
Exploits0References6Affected Software1
Gitee
Giteeadded 2025/07/27 4:10 a.m.182 views

dirty_sock

dirtysock: Linux Privilege Escalation via snapd In January 2019, current versions of Ubuntu Linux were found to be vulnerable to local privilege escalation due to a bug in the snapd API. This repository contains the original exploit POC, which is being made available for research and education. F...

7.3AI score
Exploits0
CNVD
CNVDadded 2021/08/23 12:0 a.m.15 views

Tecknodreams SapphireIMS Insecure Direct Object Reference Vulnerability

Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise class service management system from Tecknodreams India. A security vulnerability exists in Tecknodreams SapphireIMS 40971. The vulnerability stems from an insecure direct object reference in the local user creation function. An attack...

8.8CVSS8.4AI score0.00866EPSS
Exploits0References1
OSV
OSVadded 2021/08/11 9:15 p.m.3 views

CVE-2017-16630

In SapphireIMS 40971, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference IDOR in the local user creation function...

8.8CVSS5.8AI score0.00866EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2021/08/11 9:15 p.m.3 views

CVE-2017-16630

In SapphireIMS 40971, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference IDOR in the local user creation function...

8.8CVSS5.5AI score0.00866EPSS
Exploits0References3
GithubExploit
GithubExploitadded 2019/02/12 6:2 a.m.4 views

Exploit for Incorrect Authorization in Canonical Snapd

dirtysock: Linux Privilege Escalation via snapd In January...

10CVSS7.3AI score0.61075EPSS
Exploits10
CNVD
CNVDadded 2018/05/09 12:0 a.m.4 views

TP-Link EAP Controller and Omada Controller Cross-Site Scripting Vulnerability (CNVD-2018-09302)

TP-Link EAP Controller and Omada Controller are both software from China P&L TP-LINK for remote control of wireless AP access point devices. A cross-site scripting vulnerability exists in TP-Link EAP Controller and Omada Controller versions 2.5.4Windows and 2.6.0Windows. A remote attacker can...

5.4CVSS5.9AI score0.00607EPSS
Exploits3References1
OSV
OSVadded 2018/02/25 8:29 p.m.6 views

CVE-2018-7480

The blkcginitqueue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service double free or possibly have unspecified other impact by triggering a creation failure...

7.8CVSS7.7AI score
Exploits0References6
Rows per page
Query Builder