Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/05/29 12:0 a.m.5 views

Dokploy 安全漏洞

Dokploy is an open-source software developed by Dokploy itself. Versions of Dokploy prior to 0.26.5 contain security vulnerabilities. These vulnerabilities stem from path traversal during the application deployment process, which allows authenticated users to write arbitrary files on the file...

9.9CVSS6.2AI score0.0009EPSS
Exploits0References1
OSV
OSVadded 2026/03/20 12:29 a.m.2 views

CVE-2026-32771 Monitoring is vulnerable to Archive Slip due to missing checks in sanitization

The CTFer.io Monitoring component is in charge of the collection, process and storage of various signals i.e. logs, metrics and distributed traces. In versions prior to 0.2.2, the sanitizeArchivePath function in pkg/extract/extract.go lines 248–254 is vulnerable to Path Traversal due to a missing...

8.8CVSS6.3AI score0.00042EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/12/04 12:11 a.m.5 views

CVE-2025-65842

The Aquarius HelperTool 1.0.003 privileged XPC service on macOS contains multiple flaws that allow local privilege escalation. The service accepts XPC connections from any local process without validating the client's identity, and its authorization logic incorrectly calls AuthorizationCopyRights...

5.1CVSS7.1AI score0.00028EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/18 5:41 a.m.2 views

Malicious code in compliancereadserv-paypal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5393d59c4341633c717d7af99e6afc6d7a1c673541cc84a0eb255d5d30434313 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References4
Microsoft Secure
Microsoft Secureadded 2022/12/12 5:0 p.m.28 views

IIS modules: The evolution of web shells and how to detect them

Web exploitation and web shells are some of the most common entry points in the current threat landscape. Web servers provide an external avenue directly into your corporate network, which often results in web servers being an initial intrusion vector or mechanism of persistence. Monitoring for...

Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 8:20 p.m.2 views

Malicious code in corporate-services (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95755d3cd069d7647dc1de340801afc411c611b2ff009b2e047c5e8d0430b797 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
ThreatPost
ThreatPostadded 2019/02/26 6:46 p.m.119 views

'Cloudborne' IaaS Attack Allows Persistent Backdoors in the Cloud

An attack scenario affecting various cloud providers could allow an attacker to implant persistent backdoors for data theft into bare-metal cloud servers, which would be able to remain intact as the cloud infrastructure moves from customer to customer. This opens the door to a wide array of attac...

8AI score
Exploits0References8
Rows per page
Query Builder