Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

238 matches found

EUVD
EUVDadded 5 days ago5 views

EUVD-2026-34321

NAVTOR NavBox through version 4.16.1.20 contains hard-coded credentials within its Windows Communication Foundation SOAP implementation. If the SOAP functionality is enabled, a local attacker can extract credentials to bypass the intended transfer workflow. Successful authentication against the...

6.3CVSS5.8AI score0.00017EPSS
Exploits0References2
Snyk
Snykadded 2026/04/14 11:47 a.m.3 views

Malicious Package

Overview okx-nav is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/04/14 11:47 a.m.4 views

Malicious code in okx-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ab3eb270d52d290185b24d8da75ec720b1c6d2403eb5bfeee0127d98edff14f The package okx-nav was found to contain malicious code. Source: ghsa-malware 3961b5dc52e388cd7ea999f85a4541bfc0e083e63afad50184fea746d70d275d Any...

5.7AI score
Exploits0References1
OSV
OSVadded 2026/04/14 11:47 a.m.2 views

MAL-2026-2648 Malicious code in okx-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ab3eb270d52d290185b24d8da75ec720b1c6d2403eb5bfeee0127d98edff14f The package okx-nav was found to contain malicious code. Source: ghsa-malware 3961b5dc52e388cd7ea999f85a4541bfc0e083e63afad50184fea746d70d275d Any...

5.7AI score
Exploits0References1
NVD
NVDadded 2026/04/07 4:16 p.m.2 views

CVE-2026-35571

Emissary is a P2P based data-driven workflow engine. Prior to 8.39.0, Mustache navigation templates interpolated configuration-controlled link values directly into href attributes without URL scheme validation. An administrator who could modify the navItems configuration could inject javascript:...

4.8CVSS0.00047EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/18 1:10 p.m.4 views

Malicious code in soft-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fcb60176234c23b5621ba75433f01363353d1663b1c03a19192296dd09fd913 The package soft-nav was found to contain malicious code...

5.8AI score
Exploits0
OSV
OSVadded 2026/03/18 1:10 p.m.2 views

MAL-2026-1852 Malicious code in soft-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fcb60176234c23b5621ba75433f01363353d1663b1c03a19192296dd09fd913 The package soft-nav was found to contain malicious code...

5.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/02/13 7:18 p.m.4 views

CVE-2025-54519

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS5.9AI score0.00018EPSS
Exploits0References1
NVD
NVDadded 2026/02/12 6:16 p.m.2 views

CVE-2025-54519

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS0.00018EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/12 5:46 p.m.5 views

CVE-2025-54519

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS6AI score0.00018EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/12 5:46 p.m.18 views

CVE-2025-54519

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS0.00018EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/12 5:46 p.m.4 views

CVE-2025-54519

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS6AI score0.00018EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/12 12:0 a.m.3 views

PT-2026-7878

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

7.3CVSS6AI score0.00018EPSS
Exploits0References2
OSV
OSVadded 2026/01/31 1:35 p.m.5 views

MAL-2026-615 Malicious code in teaser-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebbd539070b3d1fb400c41280034565422204c7bf4047b965f596d56245c345e The package teaser-nav was found to contain malicious code. Source: ossf-package-analysis...

5.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/31 1:35 p.m.7 views

Malicious code in teaser-nav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebbd539070b3d1fb400c41280034565422204c7bf4047b965f596d56245c345e The package teaser-nav was found to contain malicious code. Source: ossf-package-analysis...

5.9AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2026/01/31 12:0 a.m.4 views

PT-2026-5502

The Booking Calendar plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the wpbc ajax WPBC FLEXTIMELINE NAV function in all versions up to, and including, 10.14.13. This makes it possible for unauthenticated attackers to retrieve booking...

5.3CVSS5.9AI score0.00026EPSS
Exploits0References3
Snyk
Snykadded 2026/01/16 4:43 p.m.2 views

Malicious Package

Overview insightvm-ui-nav-menus is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVDadded 2026/01/16 12:10 a.m.4 views

EUVD-2026-3070

Malicious code in insightvm-ui-nav-menus npm...

6.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/16 12:10 a.m.6 views

Malicious code in insightvm-ui-nav-menus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24e901eb03445094160df9df30313f817015ba26cdd09e82d4f527261acda35 The package insightvm-ui-nav-menus was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References1
OSV
OSVadded 2026/01/16 12:10 a.m.4 views

MAL-2026-288 Malicious code in insightvm-ui-nav-menus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24e901eb03445094160df9df30313f817015ba26cdd09e82d4f527261acda35 The package insightvm-ui-nav-menus was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
Rows per page
Query Builder