Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/05/28 3:46 p.m.12 views

CVE-2026-44477

CVE-2026-44477 affects CloudNativePG prior to 1.29.1 and 1.28.3. The metrics exporter opens a PostgreSQL connection as the superuser and demotes to pg_monitor with SET ROLE, but the session_user remains postgres. Any SQL in the scrape session can call RESET ROLE to recover superuser privileges, t...

9.9CVSS5.9AI score0.00045EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-29989

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.04026EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/22 9:34 p.m.5 views

CVE-2021-43035

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

9.8CVSS8.8AI score0.04026EPSS
Exploits1
CNNVD
CNNVDadded 2023/06/16 12:0 a.m.1 views

rudder-server SQL注入漏洞

rudder-server is an open source niche-focused privacy and security alternative from RudderStack. A SQL injection vulnerability exists in versions prior to rudder-server 1.3.0-rc.1 that stems from the rudder role in PostgresSQL having superuser privileges by default, which can lead to remote code...

8.8CVSS8.8AI score0.89577EPSS
Exploits4References9
OSV
OSVadded 2021/12/06 4:15 a.m.1 views

CVE-2021-43035

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

9.8CVSS7.8AI score0.04026EPSS
Exploits1References3
NVD
NVDadded 2021/12/06 4:15 a.m.12 views

CVE-2021-43035

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

9.8CVSS0.04026EPSS
Exploits1References3
Prion
Prionadded 2021/12/06 4:15 a.m.18 views

Sql injection

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

7.5CVSS10AI score0.04026EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2021/12/06 12:0 a.m.11 views

CVE-2021-43035

An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to full acces...

10AI score0.04026EPSS
Exploits1References3
Rows per page
Query Builder