Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

OSV
OSVadded 2026/05/15 3:20 p.m.0 views

MINI-RV3F-J8RF-C25F

Bulletin has no description...

8.1CVSS5.7AI score0.00059EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.4 views

PT-2026-39086

Content removed...

5.5CVSS5.8AI score0.00013EPSS
Exploits0References20
OSV
OSVadded 2026/04/28 1:45 p.m.1 views

MINI-C9P3-27R3-HGWC

Bulletin has no description...

7.3CVSS5.8AI score0.00255EPSS
Exploits0
OSV
OSVadded 2026/02/24 3:16 a.m.0 views

CVE-2026-3057

A security flaw has been discovered in a54552239 pearProjectApi up to 2.8.10. Affected is the function dateTotalForProject of the file application/common/Model/Task.php of the component Backend Interface. The manipulation of the argument projectCode results in sql injection. The attack can be...

9.8CVSS5.6AI score
Exploits0References5
OSV
OSVadded 2026/01/29 12:49 a.m.1 views

CGA-PRJ8-J638-QHR5

Bulletin has no description...

5.3CVSS5.8AI score0.0014EPSS
Exploits0
EUVD
EUVDadded 2025/12/15 9:30 p.m.1 views

EUVD-2025-203436

WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server...

8.7CVSS7.8AI score0.00218EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/12/15 12:0 a.m.1 views

PT-2025-51248

FNT Command 13.4.0 is vulnerable to Directory Traversal...

8.3CVSS7AI score0.00056EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/09/22 12:0 a.m.2 views

PT-2025-39074

🔵 Ammonia, Mutation XSS, CVE-2025-42581 Low https://t.co/YUWArRZLdF...

7AI score
Exploits0References1
OSV
OSVadded 2025/08/23 10:47 a.m.1 views

CGA-PRJ6-RP27-GHPR

Bulletin has no description...

10CVSS7.2AI score0.01278EPSS
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.2 views

MAL-2025-41043 Malicious code in zodiac-waterfall-ghm775-project (npm)

The package zodiac-waterfall-ghm775-project was found to contain malicious code...

7.2AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2025/01/21 12:0 a.m.1 views

PT-2025-1384 · Unknown · Pearprojectapi

Name of the Vulnerable Software and Affected Versions: pearProjectApi version 2.8.10 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the projectCode parameter at the "project.php" endpoint. Recommendations: For pearProjectApi version...

9.8CVSS8.1AI score0.00218EPSS
Exploits1References6
CNNVD
CNNVDadded 2025/01/21 12:0 a.m.1 views

PearProject SQL注入漏洞

PearProject is a project management system backend interface for vilson individual developers. A security vulnerability exists in PearProject version v2.8.10, which originates from an SQL injection vulnerability contained via the projectCode parameter on project.php...

9.8CVSS7.8AI score0.00218EPSS
Exploits1References2
OSV
OSVadded 2022/06/29 10:14 p.m.22 views

GHSA-JX34-GQQQ-R6GM Stored XSS via HTML fields in SilverStripe Framework

SilverStripe Framework through 4.10.8 allows XSS, inside of script tags that can can be added to website content via XHR by an authenticated CMS user if the cwp-core module is not installed on the sanitiseserverside contig is not set to true in project code...

5.4CVSS5.2AI score0.00338EPSS
Exploits0References7
Github Security Blog
Github Security Blogadded 2022/06/29 10:14 p.m.30 views

Stored XSS via HTML fields in SilverStripe Framework

SilverStripe Framework through 4.10.8 allows XSS, inside of script tags that can can be added to website content via XHR by an authenticated CMS user if the cwp-core module is not installed on the sanitiseserverside contig is not set to true in project code...

5.4CVSS2.8AI score0.00338EPSS
Exploits0References8Affected Software1
NVD
NVDadded 2019/01/22 8:29 p.m.11 views

CVE-2018-19011

CX-Supervisor Versions 3.42 and prior can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application...

8.8CVSS7.8AI score0.00506EPSS
Exploits0References2
Rows per page
Query Builder