Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

524 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-24161

Malicious code in bioql PyPI...

8CVSS6.5AI score0.0055EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-7217

Malicious code in bioql PyPI...

6.3CVSS4.5AI score0.00317EPSS
Exploits1References7
Microsoft CVE
Microsoft CVEadded 2025/10/02 6:11 a.m.3 views

JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler.

...

10CVSS7AI score0.00035EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2025/10/02 6:11 a.m.3 views

JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.

...

7.5CVSS7AI score0.00006EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/08/21 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2010-3494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service daemon outage by...

4.3CVSS5.8AI score0.00415EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6043

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in External Protocol Handler in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially execute arbitrary...

8.8CVSS8.5AI score0.01484EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-11701

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default webcal: protocol handler will load a web site vulnerable to cross-site scripting XSS attacks. This default was left in place as a legacy feature and...

6.1CVSS7AI score0.00235EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-15680

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a...

5.3CVSS7.3AI score0.00318EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-43541

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When invoking protocol handlers for external protocols, a supplied parameter URL containing spaces was not properly escaped. This vulnerability affects...

6.5CVSS7.5AI score0.00356EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/08/06 5:2 p.m.5 views

CVE-2025-8665 agno-agi agno Model Context Protocol mcp.py MultiMCPTools os command injection

A vulnerability, which was classified as critical, has been found in agno-agi agno up to 1.7.5. This issue affects the function MCPTools/MultiMCPTools in the library libs/agno/agno/tools/mcp.py of the component Model Context Protocol Handler. The manipulation of the argument command leads to os...

6.5CVSS6.8AI score0.0115EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/23 2:7 a.m.4 views

CVE-2023-6871

Under certain conditions, Firefox did not display a warning when a user attempted to navigate to a new protocol handler. This vulnerability affects Firefox 121...

4.3CVSS6AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:24 p.m.7 views

CVE-2020-15680

If a valid external protocol handler was referenced in an image tag, the resulting broken image size could be distinguished from a broken image size of a non-existent protocol handler. This allowed an attacker to successfully probe whether an external protocol handler was registered. This...

5.3CVSS6AI score0.00318EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 4:17 p.m.6 views

CVE-2020-25013

JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler...

7.5CVSS6.8AI score0.00006EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 3:22 p.m.10 views

CVE-2020-25207

JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler...

10CVSS7.5AI score0.00035EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 12:42 p.m.3 views

CVE-2010-3751

Multiple heap-based buffer overflows in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 allow remote attackers to execute arbitrary code via a long .smil argument to the 1 tfile, 2 pnmm, or 3 cdda protocol handler...

9.3CVSS8.1AI score0.05834EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/02 9:10 p.m.6 views

CVE-2025-31477 Improper Scope Validation in the open Endpoint of tauri-plugin-shell

The Tauri shell plugin allows access to the system shell. Prior to 2.2.1, the Tauri shell plugin exposes functionality to execute code and open programs on the system. The open endpoint of this plugin is designed to allow open functionality with the system opener e.g. xdg-open on Linux. This was...

9.3CVSS8.3AI score0.02401EPSS
Exploits1References2
Amazon
Amazonadded 2025/04/01 12:0 a.m.1 views

Important: firefox

Issue Overview: Requests initiated through reader mode did not properly omit cookies with a SameSite attribute. This vulnerability affects Thunderbird 91.9, Firefox ESR 91.9, and Firefox 100. CVE-2022-29912 In resizeToAtLeast of SkRegion.cpp, there is a possible out of bounds write due to an...

8.1CVSS9.9AI score0.00912EPSS
Exploits2
RedHat Linux
RedHat Linuxadded 2025/03/13 7:11 a.m.3 views

firefox: Clickjacking the registerProtocolHandler info-bar Reporter

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A web page could trick a user into setting that site as the default handler for a custom URL protocol...

4.3CVSS6.5AI score0.00227EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2025/03/13 6:57 a.m.4 views

firefox: Clickjacking the registerProtocolHandler info-bar Reporter

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A web page could trick a user into setting that site as the default handler for a custom URL protocol...

4.3CVSS6.5AI score0.00227EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2025/03/10 6:17 a.m.3 views

firefox: Clickjacking the registerProtocolHandler info-bar Reporter

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: A web page could trick a user into setting that site as the default handler for a custom URL protocol...

4.3CVSS6.5AI score0.00227EPSS
Exploits0References7
Rows per page
Query Builder