Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CNNVD
CNNVDadded 2026/05/01 12:0 a.m.4 views

WordPress plugin Ultimate Dashboard 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.7AI score0.00006EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-8566

Malware in sbrugna...

3.5CVSS6.4AI score0.00193EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-33120

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00264EPSS
Exploits1References2
Veracode
Veracodeadded 2025/08/19 8:33 a.m.2 views

Cross-site Scripting (XSS)

microweber/microweber is vulnerable to Cross-site Scripting XSS. The vulnerability is due to the id parameter in the liveedit.modulesettings API endpoint allowing arbitrary JavaScript execution...

6.1CVSS6.7AI score0.00258EPSS
Exploits2References5Affected Software1
CNNVD
CNNVDadded 2025/08/01 12:0 a.m.3 views

Microweber CMS 安全漏洞

Microweber CMS is a drag-and-drop website builder from Microweber Open Source. A security vulnerability exists in Microweber CMS version 2.0, which stems from reflective cross-site scripting in the id parameter in the liveedit.modulesettings API endpoint, which could lead to arbitrary JavaScript...

6.1CVSS6AI score0.00258EPSS
Exploits2References4
CNNVD
CNNVDadded 2024/07/24 12:0 a.m.0 views

Dolibarr ERP/CRM 安全漏洞

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A security vulnerability exists in Dolibarr ERP/CRM versions...

5.5CVSS7.6AI score0.0048EPSS
Exploits0References2
OSV
OSVadded 2018/03/21 5:5 p.m.2 views

DRUPAL-CONTRIB-2018-017

This module enables you to retrieve image metadata and use them in fields or title. The module doesn't sufficiently restrict access to module setting pages thereby causing an access bypass vulnerability. This vulnerability is mitigated by the fact that an attacker must have permission to create...

6.8AI score
Exploits0References1
Drupal
Drupaladded 2018/03/21 12:0 a.m.1 views

Exif - Critical - Access bypass - SA-CONTRIB-2018-017

This module enables you to retrieve image metadata and use them in fields or title. The module doesn't sufficiently restrict access to module setting pages thereby causing an access bypass vulnerability. This vulnerability is mitigated by the fact that an attacker must have permission to create...

5.7AI score
Exploits0References5
Prion
Prionadded 2014/11/12 4:55 p.m.12 views

Design/Logic Flaw

The Organic Groups Menu aka OG Menu module before 7.x-2.2 for Drupal allows remote authenticated users with the "access administration pages" permission to change module settings via unspecified vectors...

3.5CVSS6.7AI score0.00193EPSS
Exploits0References3Affected Software1
securityvulns
securityvulnsadded 2004/06/14 12:0 a.m.29 views

[SNS Advisory No.74] Webmin Access Control Rule Bypass Vulnerability

---------------------------------------------------------------------- SNS Advisory No.74 Webmin Access Control Rule Bypass Vulnerability Problem first discovered on: Sun, 11 Apr 2004 Published on: Fri, 11 Jun 2004 ---------------------------------------------------------------------- Overview:...

0.3AI score
Exploits0
Rows per page
Query Builder