Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

156 matches found

Nuclei
Nucleiadded yesterday29 views

PMB 7.4.6 - Cross-Site Scripting

PMB 7.4.6 contains a cross-site scripting vulnerability via the query parameter at /admin/convert/exportz3950new.php. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authenticatio...

6.1CVSS6.4AI score0.14924EPSS
Exploits1References3
Nuclei
Nucleiadded 2 days ago222 views

ManageEngine Desktop Central Java Deserialization

Zoho ManageEngine Desktop Central before 10.0.474 is vulnerable to a deserialization of untrusted data, which permits remote code execution. id: CVE-2020-10189 info: name: ManageEngine Desktop Central Java Deserialization author: king-alexander severity: critical description: | Zoho ManageEngine...

10CVSS7.8AI score0.94248EPSS
Exploits6References5
Nuclei
Nucleiadded 3 days ago71 views

Joomla! Component PrayerCenter 3.0.2 - SQL Injection

SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429. id: CVE-2018-7314 info: name: Joomla! Component PrayerCenter 3.0.2 - SQL Injection author: DhiyaneshDK severity: critical description: | SQL Injection...

9.8CVSS7.4AI score0.90805EPSS
Exploits6References4
OpenVAS
OpenVASadded 2024/09/25 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2024:3418-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS7.8AI score0.03014EPSS
Exploits3References6
OpenVAS
OpenVASadded 2024/09/20 12:0 a.m.18 views

Fedora: Security Advisory (FEDORA-2024-7db9258d37)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.03014EPSS
Exploits5References40
OpenVAS
OpenVASadded 2024/09/16 12:0 a.m.23 views

Fedora: Security Advisory (FEDORA-2024-1d0cb3b43f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS7.2AI score0.03014EPSS
Exploits4References13
Tenable Nessus
Tenable Nessusadded 2024/09/13 12:0 a.m.30 views

Security Updates for Microsoft Office Online Server (September 2024)

The Microsoft Office Web Apps installation on the remote host is missing a security update. It is, therefore, affected by the following: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2024-43465 Note that Nessus has not tested for this iss...

7.8CVSS5.6AI score0.00684EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/09/02 12:0 a.m.6 views

Emerson Ovation Insufficient Verification of Data Authenticity (CVE-2022-30267)

The affected product was found to have no authentication of firmware signing and relies on an insecure checksum for integrity. This could allow an attacker to push malicious firmware images, cause a denial-of-service condition, or achieve remote code execution. This plugin only works with...

6AI score
Exploits0References2
OpenVAS
OpenVASadded 2024/08/24 12:0 a.m.19 views

openSUSE Security Advisory (openSUSE-SU-2024:0258-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.9AI score0.24226EPSS
Exploits4References6
OpenVAS
OpenVASadded 2024/08/06 12:0 a.m.13 views

Fedora: Security Advisory (FEDORA-2024-d638b9a34c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.00209EPSS
Exploits0References7
Atlassian
Atlassianadded 2024/07/03 8:30 a.m.31 views

DoS (Denial of Service) org.apache.commons:commons-compress Dependency in Confluence Data Center and Server

This High severity org.apache.commons:commons-compress Dependency vulnerability was introduced in versions 7.19.23, 8.5.10, 8.9.2 of Confluence Data Center and Server. This org.apache.commons:commons-compress Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of...

7.5CVSS7.4AI score0.0174EPSS
Exploits0
OpenVAS
OpenVASadded 2024/05/27 12:0 a.m.45 views

Debian: Security Advisory (DLA-3818-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.87555EPSS
Exploits3References2
OpenVAS
OpenVASadded 2024/05/27 12:0 a.m.27 views

Fedora: Security Advisory (FEDORA-2024-8b50ca2e22)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.04728EPSS
Exploits10References2
Tenable Nessus
Tenable Nessusadded 2024/04/10 12:0 a.m.26 views

AlmaLinux 9 : less (ALSA-2024:1692)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2024:1692 advisory. - closealtfile in filename.c in less before 606 omits shellquote calls for LESSCLOSE. CVE-2022-48624 Note that Nessus has not tested for this issue but has instead...

7.8CVSS6.4AI score0.00578EPSS
Exploits0References2
CVE
CVEadded 2024/04/02 12:0 a.m.60 views

CVE-2024-30808

CVE-2024-30808 affects Bento4 v1.6.0-641-2-g1529b83, where a heap-use-after-free in AP4_SubStream::~AP4_SubStream (Ap4ByteStream.cpp) leads to a Denial of Service. The issue is demonstrated by mp42ts. Affected component: Bento4 library; root cause: heap-use-after-free in AP4_SubStream destructor....

2.7CVSS6.7AI score0.0005EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVASadded 2024/03/29 12:0 a.m.17 views

Fedora: Security Advisory for pandoc-cli (FEDORA-2024-7d83cbccb6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS5.9AI score0.00049EPSS
Exploits1References2
OpenVAS
OpenVASadded 2023/12/21 12:0 a.m.15 views

Out of Bounds Write Vulnerability in Huawei CloudEngine Product (huawei-sa-20210519-01-cloudengine)

There is an out of bounds write vulnerability in some Huawei products. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.5AI score0.00176EPSS
Exploits0References1
Atlassian
Atlassianadded 2023/12/14 2:45 p.m.35 views

DoS (Denial of Service) org.jvnet.hudson:xstream Dependency in Bamboo Data Center and Server

This High severity org.jvnet.hudson:xstream Dependency vulnerability was introduced in versions 9.2.1 of Bamboo Data Center and Server. This org.jvnet.hudson:xstream Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an...

7.5CVSS6.8AI score0.02639EPSS
Exploits0
OpenVAS
OpenVASadded 2023/12/06 12:0 a.m.18 views

Fedora: Security Advisory for poppler (FEDORA-2023-6b20b7807a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00177EPSS
Exploits1References2
OpenVAS
OpenVASadded 2023/11/29 12:0 a.m.14 views

Fedora: Security Advisory for golang-github-nats-io-streaming-server (FEDORA-2023-3a895ff65c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.0015EPSS
Exploits0References2
Rows per page
Query Builder