Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-26013

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00479EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:54 a.m.4 views

CVE-2023-24375

Missing Authorization vulnerability in miniOrange WordPress Social Login and Register Discord, Google, Twitter, LinkedIn allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Social Login and Register Discord, Google, Twitter, LinkedIn: from n/a...

3.5CVSS5.2AI score0.00183EPSS
Exploits0References1
OSV
OSVadded 2025/05/20 9:15 p.m.1 views

CVE-2025-44898

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the theauthName parameter in the webaaaloginAuthlistEdit function...

9.8CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/06/22 7:6 p.m.8 views

CVE-2023-28799

A URL parameter during login flow was vulnerable to injection. An attacker could insert a malicious domain in this parameter, which would redirect the user after auth and send the authorization token to the redirected domain...

8.2CVSS7.1AI score0.00149EPSS
Exploits0References6
Cvelist
Cvelistadded 2023/01/23 2:31 p.m.12 views

CVE-2022-4305 Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin

The Login as User or Customer WordPress plugin before 3.3 lacks authorization checks to ensure that users are allowed to log in as another one, which could allow unauthenticated attackers to obtain a valid admin session...

9.6AI score0.83054EPSS
Exploits2References1
NVD
NVDadded 2022/04/06 7:15 p.m.12 views

CVE-2022-20763

A vulnerability in the login authorization components of Cisco Webex Meetings could allow an authenticated, remote attacker to inject arbitrary Java code. This vulnerability is due to improper deserialization of Java code within login requests. An attacker could exploit this vulnerability by...

8.8CVSS0.00479EPSS
Exploits0References1
Prion
Prionadded 2022/04/06 7:15 p.m.13 views

Deserialization of untrusted data

A vulnerability in the login authorization components of Cisco Webex Meetings could allow an authenticated, remote attacker to inject arbitrary Java code. This vulnerability is due to improper deserialization of Java code within login requests. An attacker could exploit this vulnerability by...

6.5CVSS8.6AI score0.00479EPSS
Exploits0References1Affected Software1
Cisco
Ciscoadded 2022/04/06 4:0 p.m.38 views

Cisco Webex Meetings Java Deserialization Vulnerability

A vulnerability in the login authorization components of Cisco Webex Meetings could allow an authenticated, remote attacker to inject arbitrary Java code. This vulnerability is due to improper deserialization of Java code within login requests. An attacker could exploit this vulnerability by...

5.4CVSS7.2AI score0.00479EPSS
Exploits0References1
Rows per page
Query Builder