Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4513 matches found

Tenable Nessus
Tenable Nessusadded 2025/11/01 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-45663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in NetSurf v3.11 causes the application to read uninitialized heap memory when creating a domevent structure. CVE-2025-45663 Note that Nessus relies on...

6.5CVSS5.5AI score0.00308EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/10/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-12206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer...

5.5CVSS5.4AI score0.00219EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/10/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-40020

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: peakusb: fix shift-out-of-bounds issue Explicitly uses a 64-bit constant when the number of bits used for its shifting is 32 which is the case for PC CAN F...

7.3AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40002

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - thunderbolt: Fix use-after-free in tbdpdprxwork The original code relies on canceldelayedwork in tbdpdprxstop, which does not ensure that the delayed work item...

5.8AI score0.00232EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.3 views

PT-2025-44004

Name of the Vulnerable Software and Affected Versions BLU-IC2 versions through 1.19.5 BLU-IC4 versions through 1.19.5 Description The software allows for the disclosure of email passwords. The issue affects Azure Access Tech BLU-IC2 and BLU-IC4. It is recommended to restrict access and enable...

10CVSS6.5AI score0.00289EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.5 views

PT-2025-43893

Name of the Vulnerable Software and Affected Versions projectworlds Advanced Library Management System version 1.0 Description A flaw exists in projectworlds Advanced Library Management System that allows for remote code execution through SQL injection. Manipulation of the keywords argument withi...

9.8CVSS7.9AI score0.00434EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2025/10/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-60360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - radare2 v5.9.8 and before contains a memory leak in the function r2rsubprocessinit. CVE-2025-60360 Note that Nessus relies on the presence of the package as...

5.5CVSS5.5AI score0.00151EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.4 views

PT-2025-43968

Name of the Vulnerable Software and Affected Versions Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System version 1.0 Description A flaw exists in the system that allows for cross site scripting. Manipulation of the category id argument in the file...

5.3CVSS5.2AI score0.00316EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2025/10/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-58148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Some Viridian hypercalls can...

7.5CVSS5.8AI score0.00347EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/10/22 12:0 a.m.5 views

PT-2025-46556

Name of the Vulnerable Software and Affected Versions Ceph affected versions not specified Description A denial-of-service issue exists in Ceph’s RGW component due to improper input validation. Specifically, providing an empty string as the content for the x-amz-copy-source argument when putting ...

7.8CVSS6.4AI score0.0039EPSS
Exploits1References31
Tenable Nessus
Tenable Nessusadded 2025/10/17 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-62491

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Use-After-Free UAF vulnerability exists in the QuickJS engine's standard library when iterating over the global list of unhandled rejected promises...

8.8CVSS6AI score0.00371EPSS
Exploits1References3
Patchstack
Patchstackadded 2025/10/15 12:56 a.m.6 views

WordPress External Login plugin <= 1.11.2 - Authenticated (Subscriber+) Sensitive Data Exposure via Test Connection vulnerability

Authenticated Subscriber+ Sensitive Data Exposure via Test Connection vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin External Login versions = 1.11.2...

4.3CVSS6.8AI score0.00245EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/10/14 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-1335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line o...

9.3CVSS7.2AI score0.94106EPSS
Exploits10References2
Positive Technologies
Positive Technologiesadded 2025/10/11 12:0 a.m.4 views

PT-2025-42477

Name of the Vulnerable Software and Affected Versions Webmin version 2.510 Description Webmin version 2.510 has a flaw in the password reset functionality forgot send.cgi. The reset link sent to users is created using the HTTP Host header through the get webmin email url function. An attacker can...

8.5CVSS6.6AI score0.00416EPSS
Exploits1References13
OSV
OSVadded 2025/10/10 8:1 p.m.3 views

CVE-2025-61930 Emlog Pro has CSRF issue that Enables Admin Password Reset

Emlog is an open source website building system. Emlog Pro versions 2.5.19 and earlier are vulnerable to Cross‑Site Request Forgery CSRF on the password change endpoint. An attacker can trick a logged‑in administrator into submitting a crafted POST request to change the admin password without...

8.1CVSS7AI score0.00197EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53593

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: Release folio lock on fscache read hit. Under the current code, when cifsreadpageworker is called, the call contract is that the callee should unlock the...

5.5CVSS6.1AI score0.00132EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tipc: do not update mtu if msgmax is too small in mtu negotiation When doing link mtu negotiation, a malicious peer may send Activate msg with a very small mtu,...

5.5CVSS6.1AI score0.00135EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-59734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be...

8.7CVSS6.2AI score0.00165EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/08 12:0 a.m.5 views

PT-2025-41311

Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A security flaw exists in PHPGurukul Beauty Parlour Management System 1.1. The issue involves SQL injection due to manipulation of the searchdata argument within an unknown...

9.8CVSS7.3AI score0.00376EPSS
Exploits1References9
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-59149

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In version 8.0.0, rules usi...

6.2CVSS6AI score0.00189EPSS
Exploits0References2
Rows per page
Query Builder