Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/05/11 8:21 a.m.22 views

CVE-2026-41018

The CVE-2026-41018 issue affects the Elasticsearch task-log handler in Apache Airflow providers for Elasticsearch. When the elasticsearch host URL includes embedded credentials (for example https://user:password@server:9200), the provider logs the full host URL, including the credentials, into ta...

6.5CVSS5.8AI score0.0041EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2026/03/31 12:0 a.m.4 views

Search Guard FLX 安全漏洞

Search Guard FLX is an encryption, authentication, and authorization system developed by the German company Search Guard. Versions 1.0.0 to 4.0.1 of Search Guard FLX contain security vulnerabilities, as the audit log function may record credentials of users who log in to Kibana...

6.5CVSS5.8AI score0.00212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/11/20 12:0 a.m.4 views

TencentOS Server 4: podman (TSSA-2025:0620)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0620 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.1CVSS7.4AI score0.03092EPSS
Exploits2References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2023-2333

Malicious code in bioql PyPI...

7.5CVSS6.7AI score0.00651EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/23 7:6 a.m.4 views

CVE-2024-11923

Under certain log settings the IAM or CORE service will log credentials in the iam logfile in Fortra Application Hub Formerly named Helpsystems One prior to version 1.3...

5.5CVSS6.9AI score0.00201EPSS
Exploits0References1
OSV
OSVadded 2022/02/10 6:15 p.m.4 views

CVE-2022-0021

An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that logs the cleartext credentials of the connecting GlobalProtect user when authenticating using Connect Before Logon feature. This issue impacts GlobalProtect App 5.2 versions...

5.5CVSS5.8AI score0.0022EPSS
Exploits0References1
CNVD
CNVDadded 2020/06/11 12:0 a.m.5 views

HashiCorp Vault Information Disclosure Vulnerability

HashiCorp Vault is a private key access management tool from HashiCorp USA. A security vulnerability exists in HashiCorp Vault and Vault Enterprise versions prior to 1.3.6 and prior to 1.4.2, which originates when the program inserts sensitive information into a log file including usernames and...

7.5CVSS6.4AI score0.01233EPSS
Exploits0References1
Kitploit
Kitploitadded 2019/05/25 9:45 p.m.222 views

SSHD-Poison - A Tool To Get Creds Of Pam Based SSHD Authentication

sshd-poison is a tool to get creds of pam based sshd authentication, this is not the easiest way to do that you can create a pam module, or just add auth optional pamexec.so quiet exposeauthtok /bin/bash -c read,-r,x;echo,-e,"env\n$x"somefile in a service configuration, not even the stealthiest t...

7.4AI score
Exploits0References1
Rows per page
Query Builder