Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2025/04/02 12:0 a.m.2 views

IBM TXSeries for Multiplatforms 跨站请求伪造漏洞

IBM TXSeries for Multiplatforms is a transaction monitoring and management software product from International Business Machines IBM designed to support distributed transaction processing on multiple platforms. A cross-site request forgery vulnerability exists in IBM TXSeries for Multiplatforms,...

8.8CVSS6.8AI score0.00158EPSS
Exploits0References2
CVE
CVEadded 2024/09/06 4:27 p.m.46 views

CVE-2023-39298

CVE-2023-39298 affects QNAP QTS and QuTS hero where a missing authorization vulnerability could allow local authenticated users to access data or perform actions beyond their permissions via unspecified vectors. The issue is documented to impact several QNAP operating system versions, with QuTScl...

7.8CVSS7.4AI score0.00056EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2024/02/20 12:0 a.m.1 views

Liferay Portal and Liferay DXP Security Vulnerabilities

Liferay Portal and Liferay DXP are both products of Liferay Inc.Liferay Portal is a J2EE-based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP ...

5.4CVSS6.7AI score0.00259EPSS
Exploits0References2
Prion
Prionadded 2022/08/30 9:15 p.m.11 views

Command injection

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access and perform actions on the affected system...

7.5CVSS9.6AI score0.01188EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2021/11/20 1:40 a.m.9 views

CVE-2021-36308

Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to gain access and perform actions on the affected system...

5.9CVSS10AI score0.01724EPSS
Exploits0References1
Prion
Prionadded 2019/12/12 2:15 p.m.11 views

Cross site scripting

A reflected XSS issue was discovered in DAViCal through 1.1.8. It echoes the action parameter without encoding. If a user visits an attacker-supplied link, the attacker can view all data the attacked user can view, as well as perform all actions in the name of the user. If the user is an...

4.3CVSS8.9AI score0.00915EPSS
Exploits4References8Affected Software2
OSV
OSVadded 2017/05/30 2:29 p.m.1 views

CVE-2017-2307

A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space...

6.1CVSS5.3AI score0.00239EPSS
Exploits0References2
Rows per page
Query Builder