Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-4304

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.00351EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/08/09 12:0 a.m.1 views

litemall 路径遍历漏洞

litemall is a small mall system for linlinjava individual developers. A path traversal vulnerability exists in litemall 1.8.0 and earlier versions, which stems from improper handling of the parameter key in the file /admin/storage/delete, which could lead to a path traversal attack...

5.5CVSS5.5AI score0.00295EPSS
Exploits1References6
CNNVD
CNNVDadded 2025/07/21 12:0 a.m.3 views

Weitong Mall 注入漏洞

Weitong Mall Weitong Mall is a shopping mall system by fuyanglipengjun, an individual developer. Weitong Mall injection vulnerability exists, the vulnerability stems from the wrong operation of the parameter key in the file platform-admin/src/main/java/com/platform/controller/SysLogController.jav...

8.8CVSS7.1AI score0.00223EPSS
Exploits1References4
BDU FSTEC
BDU FSTECadded 2025/05/26 12:0 a.m.1 views

The vulnerability of the web_radiusSrv_dftParam_post() function in the microprogramming software for PLANET Technology allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the webRadiusSrvdftParampost function in the microprogramming software for PLANET Technology is related to buffer overflows in the stack during the processing of the radDftParamKey parameter. Exploiting this vulnerability could allow an attacker to compromise the...

10CVSS5.8AI score0.00448EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2024/05/27 12:0 a.m.2 views

PT-2024-36018 · Winnmp · Winnmp

Name of the Vulnerable Software and Affected Versions: WinNMP version 19.02 Description: A vulnerability has been discovered that allows for an XSS attack via the /tools/redis.php page, specifically in the k, hash, key, and p parameters. This could enable a remote user to submit a specially craft...

6.3CVSS6AI score0.00445EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/12/25 12:0 a.m.1 views

EasyImages Path Traversal Vulnerability

EasyImages is a thin wrapper on PIL by Jakub Cieslik individual developer. It is used for exploring, visualizing and sharing images. A path traversal vulnerability exists in icret EasyImages version 2.8.3, which stems from unknown code in app/hide.php that causes path traversal via the parameter...

5.3CVSS7.1AI score0.00142EPSS
Exploits0References4
CNNVD
CNNVDadded 2023/01/11 12:0 a.m.2 views

piWallet SQL注入漏洞

piWallet is a popular secure open source online torrents wallet for jfm individual developers. piWallet suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter key resulting in sql injection...

9.8CVSS6.6AI score0.00347EPSS
Exploits0References5
NVD
NVDadded 2022/08/10 8:15 p.m.10 views

CVE-2022-35526

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 login.cgi has no filtering on parameter key, which leads to command injection in page /login.shtml...

9.8CVSS0.05029EPSS
Exploits1References1
Rows per page
Query Builder