Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNNVD
CNNVDadded 2026/03/05 12:0 a.m.3 views

WordPress plugin OoohBoi Steroids for Elementor 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.4CVSS5.7AI score0.00048EPSS
Exploits0References5
OSV
OSVadded 2025/07/04 1:37 p.m.3 views

CVE-2025-38182 ublk: santizize the arguments from userspace when adding a device

In the Linux kernel, the following vulnerability has been resolved: ublk: santizize the arguments from userspace when adding a device Sanity check the values for queue depth and number of queues we get from userspace when adding a device...

7.8CVSS6.4AI score0.00067EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/05/22 9:5 p.m.2 views

CVE-2021-24237

The Realteo WordPress plugin before 1.2.4, used by the Findeo Theme, did not properly sanitise the keywordsearch, searchradius. bedrooms and bathrooms GET parameters before outputting them in its properties page, leading to an unauthenticated reflected Cross-Site Scripting issue...

6.1CVSS6.3AI score0.63261EPSS
Exploits2References1
OSV
OSVadded 2022/10/21 11:4 a.m.1 views

OESA-2022-2004 golang security update

The Go Programming Language Security Fixes: Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum si...

7.5CVSS5AI score0.00031EPSS
Exploits1References4
Prion
Prionadded 2022/05/23 8:16 a.m.10 views

Cross site scripting

The Gwyn's Imagemap Selector WordPress plugin through 0.3.3 does not sanitise and escape some parameters before outputting them back in attributes, leading to a Reflected Cross-Site Scripting...

4.3CVSS6.1AI score0.03252EPSS
Exploits1References1Affected Software1
Veracode
Veracodeadded 2019/06/13 2:40 a.m.8 views

SQL Injection

resquel is vulnerable to SQL injection. A remote attacker is able to inject and execute arbitrary SQL statements in the application due to the lack of query parameters sanitization...

8.1AI score
Exploits0
securityvulns
securityvulnsadded 2007/11/17 12:0 a.m.67 views

Aida-Web Information Exposure

Hi list, Parameters being transferred per $GET aren't sanitised properly. http://name.tld/CGI-Bin/frame.html?Mehr=xxx Everyone can read any comment and its poster, although it should be readable only for superiors http://name.tld/CGI-Bin/frame.html?Mehr=xxx&SUPER=x You can see, which supervisor t...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2004/02/06 12:0 a.m.23 views

OpenJournal 2.0 - Authentication Bypassing

source: https://www.securityfocus.com/bid/9598/info It has been reported that OpenJournal is prone to an authentication bypass vulnerability. This issue is caused by the application failing to properly sanitize URI specified parameters. Successful exploitation of this issue may lead to remote...

7.4AI score
Exploits0
Rows per page
Query Builder