Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OpenVAS
OpenVASadded 2026/02/06 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-8012-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.4AI score0.00709EPSS
Exploits0References2
OSV
OSVadded 2026/02/04 1:26 p.m.1 views

USN-8012-1 gh vulnerabilities

It was discovered that GitHub CLI could behave unexpectedly if users downloaded a malicious GitHub Actions workflow artifact through gh run download. An attacker could possibly use this issue to create or overwrite files in unintended directories. CVE-2024-54132 It was discovered that GitHub CLI...

6.5CVSS7.3AI score0.00709EPSS
Exploits0References3
Metasploit
Metasploitadded 2025/06/29 6:53 p.m.469 views

Skyvern SSTI Remote Code Execution

This module exploits SSTI vulnerability in Skyvern use exploit/linux/http/skyvernssticve202549619 msf exploitskyvernssticve202549619 show targets ...targets... msf exploitskyvernssticve202549619 set TARGET msf exploitskyvernssticve202549619 show options ...show and set options... msf...

8.5CVSS5.8AI score0.73541EPSS
Exploits6
Veracode
Veracodeadded 2024/12/16 6:39 a.m.6 views

Directory Traversal

The github.com/cli/cli is vulnerable to a Directory Traversal. The vulnerability is due to improper handling of artifact names during download when using the gh run download command. Specifically, if a malicious GitHub Actions workflow artifact is named .., the files within the artifact are...

6.3CVSS6.1AI score0.00709EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2023/12/25 8:15 a.m.1 views

CVE-2023-36485

The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user via a malicious BPMN2 workflow definition file...

7.2CVSS7.3AI score0.00672EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2021/08/02 12:0 a.m.2 views

PT-2021-8571 · Atlassian · Jira

Name of the Vulnerable Software and Affected Versions: Jira Server and Jira Data Center versions prior to 8.18.1 Description: The issue allows remote attackers to execute arbitrary code via a Remote Code Execution RCE vulnerability, by tricking a system administrator into importing a malicious...

8.8CVSS8.8AI score0.02571EPSS
Exploits0References5
CNNVD
CNNVDadded 2021/08/02 12:0 a.m.1 views

Atlassian JIRA Server和Atlassian JIRA Data Center 代码注入漏洞

Atlassian JIRA Server and Atlassian JIRA Data Center are both products of Atlassian Australia.Atlassian JIRA Server is the server version of a defect tracking management system. The system is used to track and manage all types of issues and defects on the job.Atlassian JIRA Data Center is the dat...

8.8CVSS7.9AI score0.02571EPSS
Exploits0References2
Rows per page
Query Builder