Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedHat Linux
RedHat Linuxadded 2026/05/19 6:15 p.m.6 views

google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 :path pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed :path that omits the mandato...

9.1CVSS6.8AI score0.0002EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-0068

Malware in sbrugna...

7.5CVSS7.4AI score0.00198EPSS
Exploits0References6
CVE
CVEadded 2025/04/25 2:32 p.m.57 views

CVE-2025-46433

JetBrains TeamCity CVE-2025-46433 is a path-traversal vulnerability caused by improper path validation in the loggingPreset parameter on versions prior to 2025.03.1. Public sources consistently identify this issue as affecting TeamCity before 2025.03.1 and recommend upgrading to 2025.03.1 or late...

9.8CVSS7.2AI score0.00003EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/10 9:40 p.m.1 views

CVE-2023-49295 quic-go's path validation mechanism can cause denial of service

quic-go is an implementation of the QUIC protocol RFC 9000, RFC 9001, RFC 9002 in Go. An attacker can cause its peer to run out of memory sending a large number of PATHCHALLENGE frames. The receiver is supposed to respond to each PATHCHALLENGE frame with a PATHRESPONSE frame. The attacker can...

6.4CVSS6.4AI score0.01767EPSS
Exploits0References11
Oracle linux
Oracle linuxadded 2020/09/09 12:0 a.m.53 views

librepo security update

1.11.0-3 - Validate paths read from repomd.xml RhBug:1866498...

8.5CVSS1.2AI score0.04104EPSS
Exploits0
VulnCheck KEV
VulnCheck KEVadded 2005/02/08 12:0 a.m.0 views

VulnCheck KEV: CVE-2004-0847

The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a 1 "" backslash or 2 "%5C" encoded backslash, aka "Path Validation Vulnerability."...

9.8CVSS7.3AI score0.52826EPSS
Exploits1References1
NVD
NVDadded 2004/11/03 5:0 a.m.12 views

CVE-2004-0847

The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a 1 "" backslash or 2 "%5C" encoded backslash, aka "Path Validation Vulnerability."...

9.8CVSS9.5AI score0.52826EPSS
Exploits1References9
Cvelist
Cvelistadded 2004/10/06 4:0 a.m.22 views

CVE-2004-0847

The Microsoft .NET forms authentication capability for ASP.NET allows remote attackers to bypass authentication for .aspx files in restricted directories via a request containing a 1 "" backslash or 2 "%5C" encoded backslash, aka "Path Validation Vulnerability."...

9.5AI score0.52826EPSS
Exploits1References9
Rows per page
Query Builder