Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Prion
Prionadded 2024/03/13 9:16 p.m.25 views

Design/Logic Flaw

yourspotify is an open source, self hosted Spotify tracking dashboard. YourSpotify version 1.8.0 allows users to create a public token in the settings, which can be used to provide guest-level access to the information of that specific user in YourSpotify. The /me API endpoint discloses Spotify A...

4CVSS6.7AI score0.0064EPSS
Exploits1References1
NVD
NVDadded 2021/07/08 4:15 p.m.8 views

CVE-2020-20584

A cross site scripting vulnerability in baigo CMS v4.0-beta-1 allows attackers to execute arbitrary web scripts or HTML via the form parameter post to /public/console/profile/info-submit/...

6.1CVSS0.0115EPSS
Exploits1References4
Kitploit
Kitploitadded 2020/06/02 9:30 p.m.746 views

Inshackle - Instagram Hacks: Track Unfollowers, Increase Your Followers, Download Stories, Etc

Instagram hacks: Track unfollowers, Increase your followers, Download Stories, etc Features: Unfollow Tracker Increase Followers Download: Stories, Saved Content, Following/followers list, Profile Info Unfollow all your following Usage: git clone https://github.com/thelinuxchoice/inshackle cd...

7.3AI score
Exploits0References1
OSV
OSVadded 2020/05/18 7:15 p.m.2 views

CVE-2020-13146

Studio in Open edX Ironwood 2.5 allows CSV injection because an added cohort in CourseInstructorCohorts may contain a formula that is exported via the "CourseData DownloadsReportsDownload profile info" feature...

8.8CVSS7.3AI score0.0109EPSS
Exploits1References1
Cvelist
Cvelistadded 2020/05/18 6:24 p.m.9 views

CVE-2020-13146

Studio in Open edX Ironwood 2.5 allows CSV injection because an added cohort in CourseInstructorCohorts may contain a formula that is exported via the "CourseData DownloadsReportsDownload profile info" feature...

8.8AI score0.0109EPSS
Exploits1References1
NVD
NVDadded 2017/10/19 8:29 a.m.20 views

CVE-2017-12284

A vulnerability in the web interface of Cisco Jabber for Windows Client could allow an authenticated, local attacker to retrieve user profile information, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input- and validation-checking mechanism...

5.5CVSS5.3AI score0.00357EPSS
Exploits0References3
OSV
OSVadded 2011/04/27 12:55 a.m.1 views

DEBIAN-CVE-2010-2788

Cross-site scripting XSS vulnerability in profileinfo.php in MediaWiki before 1.15.5, when wgEnableProfileInfo is enabled, allows remote attackers to inject arbitrary web script or HTML via the filter parameter...

2.6CVSS6AI score0.01556EPSS
Exploits0References1
ThreatPost
ThreatPostadded 2010/04/20 6:7 p.m.5 views

Cuando esté creando una cuenta

Cuando cree una cuenta en Facebook, sea cuidadoso con la información personal que ofrece durante el proceso de registro. Facebook sólo necesita un nombre y un cumpleaños falso. NO use la misma contraseña que utiliza para su correo electrónico u otras cuentas en línea de naturaleza delicada. Si su...

1.2AI score
Exploits0
Rows per page
Query Builder