Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-0304

Malware in sbrugna...

9.3CVSS8.1AI score0.00863EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-9539

Malware in sbrugna...

9.8CVSS9.5AI score0.00691EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-9344

Malware in sbrugna...

9.8CVSS9.2AI score0.00433EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 6:7 a.m.3 views

CVE-2014-9530

A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact...

9.8CVSS7AI score0.00433EPSS
Exploits0References1
NVD
NVDadded 2020/02/07 3:15 p.m.11 views

CVE-2014-9530

A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact...

9.8CVSS9.5AI score0.00433EPSS
Exploits0References1
Prion
Prionadded 2020/02/07 3:15 p.m.12 views

Design/Logic Flaw

A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact...

7.5CVSS7.1AI score0.00433EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/02/07 2:58 p.m.17 views

CVE-2014-9530

A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact...

9.6AI score0.00433EPSS
Exploits0References1
CVE
CVEadded 2020/02/07 2:58 p.m.39 views

CVE-2014-9530

CVE-2014-9530 affects nw.js prior to 0.11.3. The vulnerability occurs when calling nw methods from normal frames; the description provides no explicit impact, only that the impact is unspecified. The entry includes CVSS scores (2.0: 7.5 - HIGH; 3.1: 9.8 - CRITICAL) indicating serious severity, wi...

9.8CVSS9.3AI score0.00433EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2018/06/01 6:29 p.m.10 views

Remote code execution

nw is an installer for nw.js. nw downloads zipped resources over HTTP, It may be possible to cause remote code execution RCE by swapping out the requested zip file with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server...

9.3CVSS8.1AI score0.00863EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2018/06/01 6:0 p.m.42 views

CVE-2016-10588

CVE-2016-10588 affects the nw installer for nw.js. The install process downloads zipped resources over HTTP, enabling a network-positioned attacker to swap the requested zip with a malicious binary, potentially causing remote code execution on the user’s system. The issue is corroborated by multi...

9.3CVSS8.3AI score0.00863EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2018/06/01 6:0 p.m.10 views

CVE-2016-10588

nw is an installer for nw.js. nw downloads zipped resources over HTTP, It may be possible to cause remote code execution RCE by swapping out the requested zip file with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server...

8.4AI score0.00863EPSS
Exploits0References1
Prion
Prionadded 2018/05/29 8:29 p.m.9 views

Remote code execution

install-nw is a module which quickly and robustly installs and caches NW.js. install-nw versions below 1.1.5 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker...

9.3CVSS8AI score0.00735EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2018/05/29 8:29 p.m.8 views

CVE-2016-10566

install-nw is a module which quickly and robustly installs and caches NW.js. install-nw versions below 1.1.5 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker...

9.3CVSS8.3AI score0.00735EPSS
Exploits0References1
CVE
CVEadded 2018/05/29 8:0 p.m.97 views

CVE-2016-10566

The CVE-2016-10566 entry concerns install-nw, a tool for installing NW.js. Versions before 1.1.5 download binary resources over HTTP, enabling MITM interference. An attacker on the network could swap the requested binary with a malicious one, potentially causing remote code execution on the user’...

9.3CVSS8.2AI score0.00735EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2018/05/29 8:0 p.m.16 views

CVE-2016-10566

install-nw is a module which quickly and robustly installs and caches NW.js. install-nw versions below 1.1.5 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker...

8.3AI score0.00735EPSS
Exploits0References1
CNVD
CNVDadded 2017/10/30 12:0 a.m.1 views

Unspecified vulnerability in nw.js

nw.js is a lightweight desktop application development tool based on Chromium and Node.js. A security vulnerability exists in versions of nw.js prior to 0.11.5. A remote attacker could gain unknown influence via unknown vectors...

9.8CVSS7AI score0.00691EPSS
Exploits0References1
NVD
NVDadded 2017/10/17 2:29 p.m.5 views

CVE-2014-9733

nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors...

9.8CVSS9.6AI score0.00691EPSS
Exploits0References1
Prion
Prionadded 2017/10/17 2:29 p.m.13 views

Code injection

nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors...

7.5CVSS7.5AI score0.00691EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2017/10/17 2:0 p.m.32 views

CVE-2014-9733

CVE-2014-9733 concerns nw.js. The connected documents indicate that NW.js before 0.11.5 can simulate user input events within a normal frame, enabling a remote attacker to cause an unknown impact via unknown vectors. The CNVD entry explicitly notes a vulnerability in nw.js prior to 0.11.5 and men...

9.8CVSS9.5AI score0.00691EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2017/10/17 2:0 p.m.12 views

CVE-2014-9733

nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors...

9.7AI score0.00691EPSS
Exploits0References1
Rows per page
Query Builder