Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Positive Technologies
Positive Technologiesadded yesterday8 views

PT-2026-46908

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS5.6AI score0.00111EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2025/08/19 11:50 a.m.413 views

Exploit for CVE-2025-8723

⚡️ Cloudflare Image Resizing Description: The plugin'...

9.8CVSS8.2AI score0.01747EPSS
Exploits1
OSV
OSVadded 2025/08/11 12:15 p.m.3 views

CVE-2025-8844

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

5.5CVSS7AI score
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2025/04/14 7:15 p.m.2 views

CVE-2025-1782

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly sanitized before being used and can be misused to include an arbitrary file in the PHP code allowing an attacker to do anything as the web server user. This flaw requires the attacker to be authenticated...

9.9CVSS6AI score0.00194EPSS
Exploits0References2Affected Software2
CNNVD
CNNVDadded 2024/01/02 12:0 a.m.1 views

YASM Security Vulnerabilities

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in YASM version 1.3.0.86.g9def, which stems from a Denial of Service DOS vulnerability in the expandsmacro function in the /preprocs/nasm/nasm-pp.c component...

5.5CVSS6.8AI score0.00329EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2023/02/15 4:36 a.m.2 views

SUSE CVE-2017-17818

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...

4.4CVSS8.5AI score0.00683EPSS
Exploits1References5
CNVD
CNVDadded 2019/10/11 12:0 a.m.3 views

vBulletin Remote Code Execution Vulnerability

vBulletin is a business forum program developed and marketed by Internet Brands and vBulletin Solutions. A remote code execution vulnerability exists in vBulletin, which can be exploited by an attacker to inject and execute arbitrary PHP code...

9.8CVSS8.5AI score0.25202EPSS
Exploits4References1
CNVD
CNVDadded 2019/03/25 12:0 a.m.1 views

baigoStudio baigoSSO Code Injection Vulnerability

baigoStudio baigoSSO is a single sign-on system. A security vulnerability exists in baigoStudio baigoSSO v3.0.1. The vulnerability can be exploited by a remote attacker to execute arbitrary PHP code via the site name field in the base configuration...

7.2CVSS7.7AI score0.00805EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2017/12/21 3:29 a.m.3 views

CVE-2017-17818

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...

7.5CVSS5.8AI score0.00683EPSS
Exploits1References4
OSV
OSVadded 2015/10/16 1:59 a.m.1 views

UBUNTU-CVE-2015-5660

Cross-site request forgery CSRF vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code...

6.8CVSS6AI score0.00126EPSS
Exploits0References5
Rows per page
Query Builder