Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:39 p.m.5 views

CVE-2023-29708

An issue was discovered in /cgi-bin/adm.cgi in WavLink WavRouter version RPT70HA1.x, allows attackers to force a factory reset via crafted payload...

7.5CVSS6.8AI score0.05747EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-1790

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-33003

Malicious code in bioql PyPI...

10CVSS9.4AI score0.00579EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-13431

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00306EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-53532

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.01169EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/07/06 10:47 p.m.8 views

CVE-2025-3108 Unsafe Deserialization in JsonPickleSerializer Enables Remote Code Execution in run-llama/llama_index

A critical deserialization vulnerability exists in the run-llama/llamaindex library's JsonPickleSerializer component, affecting versions v0.12.27 through v0.12.40. This vulnerability allows remote code execution due to an insecure fallback to Python's pickle module. JsonPickleSerializer prioritiz...

5CVSS0.01612EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 10:42 p.m.9 views

CVE-2022-28582

It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in TOTOlink A7100RU v7.4cu.2313b20191024 router, which allows an attacker to execute arbitrary commands through a carefully constructed payload...

10CVSS8.1AI score0.18709EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/03/16 1:15 p.m.9 views

CVE-2025-2000

A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege escalation when deserialising QPY formats 13. A python process calling Qiskit 0.18.0 through 1.4.1's qiskit.qpy.load function could potentially execute any arbitrary Python code embedded...

9.8CVSS7.8AI score0.00168EPSS
Exploits0References1
Huntr
Huntradded 2022/12/08 3:56 a.m.27 views

Cross Site Scripting (XSS) Reflected

Description Reflected cross-site scripting or XSS arises when an application receives data in an HTTP request and includes that data within the immediate response in an unsafe way. Proof of Concept https://github.com/phpipam/phpipam/blob/master/app/subnets/mail-notify-subnet.php look in line 94-9...

5.8CVSS5.9AI score0.00325EPSS
Exploits1References1
CNVD
CNVDadded 2022/09/21 12:0 a.m.7 views

Tenda AC21 formSetFirewallCfg function buffer overflow vulnerability

The Tenda AC21 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC21 version V16.03.08.15, which originates from a lack of length checking of input data in the formSetFirewallCfg function of /bin/httpd, which can be exploited to cause httpd to...

7.5CVSS7.2AI score0.00354EPSS
Exploits1References1
Huntr
Huntradded 2022/06/28 1:21 p.m.161 views

Bypass open redirect protection

Description I could bypass the open redirect protection on the application after parsing the redirect function using the following payload http://[email protected]/ and the payload with the link in the following...

5.8CVSS5.1AI score0.00174EPSS
Exploits1References1
Rows per page
Query Builder