Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/04/10 6:31 p.m.3 views

GHSA-H383-GMXW-35V2 Apache Log4j 1 to Log4j 2 bridge: silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters

The Log4j1XmlLayout from the Apache Log4j 1-to-Log4j 2 bridge fails to escape characters forbidden by the XML 1.0 standard, producing malformed XML output. Conforming XML parsers are required to reject documents containing such characters with a fatal error, which may cause downstream log...

6.9CVSS5.8AI score0.00535EPSS
Exploits1References8
OSV
OSVadded 2025/12/19 5:11 p.m.3 views

CVE-2025-68430 CVAT vulnerable to directory traversal via mounted share listing

CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.8.1 through 2.52.0, an attacker with an account on a CVAT instance is able to retrieve the contents of any file system directory accessible to the CVAT server. The exposed information is names of...

5.3CVSS6.5AI score0.0024EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/11/20 12:0 a.m.3 views

IBM Concert 安全漏洞

IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform, announced by IBM in May 2024 at the IBMThink conference in Boston, USA. IBM Concert suffers from an information disclosure vulnerability that stems from t...

7.5CVSS5.8AI score0.00222EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/10/28 2:53 p.m.3 views

CVE-2025-36081 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert Software 1.0.0 through 2.0.0 could allow a user to modify system logs due to improper neutralization of log input...

5.3CVSS0.00197EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/09/24 12:0 a.m.9 views

Apache IoTDB 安全漏洞

Apache IoTDB is an integrated data management engine designed for time-series data from the Apache USA Foundation that provides data collection, storage, and analysis services, among other things. A security vulnerability exists in Apache IoTDB version 1.0.0 up to and including version 2.0.5, whi...

5.3CVSS6.5AI score0.00432EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2020/05/28 5:59 p.m.3 views

freerdp: Out-of-bounds write in planar.c

A flaw was found in freerdp in versions between 1.0 and 2.0.0. An out-of-bounds memory write was found in the planar.c function which could allow an attacker to control data sent from the RDP server to the client. The highest threat from this vulnerability is to data confidentiality and integrity...

6.6CVSS5.8AI score0.01944EPSS
Exploits1References4
OSV
OSVadded 2020/05/15 5:15 p.m.0 views

UBUNTU-CVE-2020-11522

libfreerdp/gdi/gdi.c in FreeRDP 1.0 through 2.0.0-rc4 has an Out-of-bounds Read...

6.5CVSS6.9AI score0.02653EPSS
Exploits1References8
CNVD
CNVDadded 2018/08/09 12:0 a.m.1 views

SQL Injection Vulnerability in Sichuan Yunbait CMSv1.0 to v2.0 Versions

Sichuan Yunbat CMS is a content management system developed by Sichuan Yunbat Technology Co. Sichuan Yunbat CMS v1.0 to v2.0 versions exist SQL injection vulnerability, remote attackers can exploit the vulnerability, access to sensitive database information...

7.9AI score
Exploits0
Rows per page
Query Builder