Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-1731

Malware in sbrugna...

7.5CVSS6.4AI score0.00374EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2025/07/01 1:9 a.m.2 views

mod_proxy_cluster: mod_proxy_cluster unauthorized MCMP requests

A vulnerability was found in modproxycluster. The issue is that the directive should be replaced by the directive as the former does not restrict IP/host access as Require ip IPADDRESS would suggest. This means that anyone with access to the host might send MCMP requests that may result in...

5.4CVSS6AI score0.00126EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2025/06/27 12:4 a.m.1 views

SUSE CVE-2024-10306

A vulnerability was found in modproxycluster. The issue is that the directive should be replaced by the directive as the former does not restrict IP/host access as Require ip IPADDRESS would suggest. This means that anyone with access to the host might send MCMP requests that may result in...

5.4CVSS6.8AI score0.00126EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2025/03/18 12:36 a.m.1 views

mod_proxy_cluster: mod_proxy_cluster unauthorized MCMP requests

A vulnerability was found in modproxycluster. The issue is that the directive should be replaced by the directive as the former does not restrict IP/host access as Require ip IPADDRESS would suggest. This means that anyone with access to the host might send MCMP requests that may result in...

5.4CVSS5.9AI score0.00126EPSS
Exploits0References4
NVD
NVDadded 2025/03/14 2:15 a.m.13 views

CVE-2025-24855

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...

7.8CVSS0.00087EPSS
Exploits1References2
Drupal
Drupaladded 2025/02/19 12:0 a.m.23 views

Drupal core - Moderately critical - Access bypass - SA-CORE-2025-002

Bulk operations allow authorized users to modify several nodes at once from the Content page /admin/content. A site builder can also add bulk operations to other pages using Views. A bug in the core Actions system allows some users to modify some fields using bulk actions that they do not have...

4.6CVSS6.8AI score0.00173EPSS
Exploits0References7
Huntr
Huntradded 2023/04/17 8:43 a.m.16 views

attack can change the immutable name and type of nodes

1 admin create a node 2 add user1 as one owner 3 login as user1 4 user1 edit the the node 5 user1 finds that the name and type can not be changed. 6 user1 still edit the node and using the burpsuit to hijack the request 7 the request content can be like...

5CVSS6.8AI score0.00854EPSS
Exploits0
Veracode
Veracodeadded 2021/11/22 4:37 a.m.19 views

Information Disclosure

hadoop-hdds-container-service is vulnerable to information disclosure. an attacker can modify ratis replication configuration through the server-to-server RPC endpoint by downloading the raw data from the data node and ozone manager...

9.1CVSS2.4AI score0.01238EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2018/02/01 5:0 p.m.9 views

CVE-2014-9503

The Discussions sub module in the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal allows remote authenticated users with "access content" permissions to modify arbitrary nodes by leveraging improper access checks on unspecified ajax callbacks...

6.7AI score0.00207EPSS
Exploits0References4
Rows per page
Query Builder