Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2026/04/06 11:24 a.m.6 views

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software

Summary Multiple vulnerabilities were addressed in IBM Concert Software version 2.3.1 Vulnerability Details CVEID:CVE-2023-5752 DESCRIPTION: When installing a package from a Mercurial VCS URL ie "pip install hg+..." with pip prior to v23.3, the specified Mercurial revision could be used to inject...

7.5CVSS5.2AI score0.00469EPSS
Exploits4Affected Software1
ATTACKERKB
ATTACKERKBadded 2022/04/01 5:31 p.m.2 views

CVE-2022-21223

The package cocoapods-downloader before 1.6.2 are vulnerable to Command Injection via hg argument injection. When calling the download function when using hg, the url and/or revision, tag, branch is passed to the hg clone command in a way that additional flags can be set. The additional flags can...

9.8CVSS7.2AI score0.00753EPSS
Exploits0References3
CNNVD
CNNVDadded 2022/04/01 12:0 a.m.2 views

Masterminds VCS 参数注入漏洞

VCS is used to manage VCS Repo through a common interface in Go. A security vulnerability exists in Masterminds VCS that stems from the presence of parameter injection in the software. The vulnerability is exploited by an attacker who executes hg with a parameter string passed to hg in such a way...

9.8CVSS8.2AI score0.00477EPSS
Exploits0References5
Rows per page
Query Builder