Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-16329

Malware in sbrugna...

8.8CVSS8.6AI score0.00214EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 3:48 p.m.6 views

CVE-2020-23585

A remote attacker can conduct a cross-site request forgery CSRF attack on OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OPV3.3.1-191028. The vulnerability is due to insufficient CSRF protections for the "mgmconfigfile.asp" because of which attacker can create a crafted "csrf for...

8.8CVSS7.2AI score0.00214EPSS
Exploits0
CNVD
CNVDadded 2024/09/24 12:0 a.m.5 views

Apache HertzBeat Deserialization Vulnerability

Apache HertzBeat is a tool from the American company Apache Apache that can monitor various components. A deserialization vulnerability exists in Apache HertzBeat versions prior to 1.6.0, which stems from the insecure deserialization of serialized data received from users by the SnakeYAML library...

8.8CVSS7.5AI score0.75553EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/11/23 12:0 a.m.17 views

CVE-2020-23585

A remote attacker can conduct a cross-site request forgery CSRF attack on OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OPV3.3.1-191028. The vulnerability is due to insufficient CSRF protections for the "mgmconfigfile.asp" because of which attacker can create a crafted "csrf for...

8.7AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/11/23 12:0 a.m.5 views

CVE-2020-23585

A remote attacker can conduct a cross-site request forgery CSRF attack on OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OPV3.3.1-191028. The vulnerability is due to insufficient CSRF protections for the "mgmconfigfile.asp" because of which attacker can create a crafted "csrf for...

7.1AI score0.00214EPSS
Exploits0References1
Veracode
Veracodeadded 2019/01/16 5:31 a.m.15 views

XML External Entity Injection (XXE)

Spring Batch Core is vulnerable to XML external entity injection XXE. The vulnerability exists because it fails to disable Document Type Definition External Entities by default, allowing an attacker to perform XXE attacks using malicious XML data input...

9.8CVSS9.3AI score0.02036EPSS
Exploits0References39Affected Software1
BDU FSTEC
BDU FSTECadded 2018/12/25 12:0 a.m.1 views

The vulnerability of the Qualcomm operating system Android component, which allows a hacker to trigger a buffer overflow in memory

The vulnerability of the Qualcomm Android operating system is related to array indexing errors. Exploiting this vulnerability can allow attackers to cause buffer overflows in memory by using malicious XML data in the firehose directory...

7.8CVSS7.4AI score0.00038EPSS
Exploits0References3
Veracode
Veracodeadded 2017/10/10 2:57 a.m.30 views

Denial Of Service (DoS)

Xerces2-j aka Apache Xerces-J parser is vulnerable to denial of service DoS. The attack can be triggered when malicious XML data is passed to Apache Xerces-J parser and processed by the JRE...

7.1CVSS6.2AI score0.07428EPSS
Exploits0References54Affected Software2
Rows per page
Query Builder