Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4512 matches found

Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2011-0255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application...

9.3CVSS8.4AI score0.03923EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2015-5803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption a...

6.8CVSS6.9AI score0.02505EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-40662

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation. This could lead to local escalation of privileg...

7.8CVSS5.7AI score0.00098EPSS
Exploits0References2
OSV
OSVadded 2025/09/09 7:37 p.m.6 views

CVE-2025-58430 listmonk Vulnerable to CSRF to XSS Chain That Can Lead to Admin Account Takeover

listmonk is a standalone, self-hosted, newsletter and mailing list manager. In versions up to and including 1.1.0, every http request in addition to the session cookie session there included nonce. The value is not checked and validated by the backend, removing nonce allows the requests to be...

8.6CVSS6AI score0.00127EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/09/09 12:0 a.m.5 views

PT-2025-36937

Name of the Vulnerable Software and Affected Versions listmonk versions 1.1.0 and earlier Description listmonk, a standalone newsletter and mailing list manager, is susceptible to a chain of vulnerabilities involving Cross-Site Request Forgery CSRF and Cross-Site Scripting XSS. Specifically, the...

9.9CVSS7.3AI score0.10543EPSS
Exploits21References48
Snyk
Snykadded 2025/09/08 2:41 p.m.2 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper handling of integer values in the msdia140.dll process. An attacker can execute arbitrary code by supplying specially crafted input that triggers an integer overflow and subsequent heap-bas...

7.5CVSS8.7AI score0.01764EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38683

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hvnetvsc: Fix panic during namespace deletion with VF The existing code move the VF NIC to new namespace when NETDEVREGISTER is received on netvsc NIC. During...

5.5CVSS6.8AI score0.00159EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/09/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-39706

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdkfd: Destroy KFD debugfs after destroy KFD wq Since KFD proc content was moved to kernel debugfs, we can't destroy KFD debugfs before kfdprocessdestroyw...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/09/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38699

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: bfa: Double-free fix When the bfadimprobe function fails during initialization, the memory pointed to by bfad-im is freed without setting bfad-im to NULL...

7.8CVSS7.5AI score0.00167EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hfsplus: fix slab-out-of-bounds read in hfsplusuni2asc The hfsplusreaddir method is capable to crash by calling hfsplusuni2asc: 667.121659 T9805...

7.1CVSS7.3AI score0.00152EPSS
Exploits0References2
Patchstack
Patchstackadded 2025/09/05 1:42 p.m.5 views

WordPress SimaCookie Plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Mika in WordPress Plugin SimaCookie versions = 1.3.2...

6.5CVSS6.6AI score0.001EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-3731

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, and 2.8 through 2.8.11 allows remote attackers to obtain the names of hidden forums and forum discussions...

5.3CVSS6.3AI score0.01595EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/09/04 12:0 a.m.6 views

PT-2025-35876

Name of the Vulnerable Software and Affected Versions: gxp versions affected versions not specified Description: An information leak may occur due to uninitialized data in the ReadTachyonCommands function within gxp main actor.cc. This could lead to local information disclosure without requiring...

5.5CVSS5.4AI score0.00074EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-58050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PCRE2 library is a set of C functions that implement regular expression pattern matching. In version 10.45, a heap-buffer-overflow read vulnerability exists...

9.1CVSS6.3AI score0.00693EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/09/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-21713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. Affected versions of Grafana expose multiple API endpoints which do not properly handle use...

4.3CVSS6.8AI score0.01185EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-3572

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libming 0.4.8. There is a heap-based buffer over-read in the function writePNG in the file util/dbl2png.c of the dbl2png command-line...

6.5CVSS6.8AI score0.01199EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/09/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-14828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Moodle affecting 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where users with the capability to crea...

4.3CVSS5.5AI score0.00629EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-2576

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums. CVE-2017-2576 Note that Nessus relies on the presence of the package as reported...

5.3CVSS5.6AI score0.01015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-14737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cryptographic cache-based side channel in the RSA implementation in Botan before 1.10.17, and 1.11.x and 2.x before 2.3.0, allows a local attacker to recover...

5.5CVSS6.8AI score0.00318EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-36823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The encrypt function of Ninja Core v7.0.0 was discovered to use a weak cryptographic algorithm, leading to a possible leakage of sensitive information...

7.5CVSS7.2AI score0.0078EPSS
Exploits0References2
Rows per page
Query Builder