Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:49 a.m.4 views

CVE-2020-24345

JerryScript through 2.3.0 allows stack consumption via function anew new Proxya,JSON.parse"",a. NOTE: the vendor states that the problem is the lack of the --stack-limit option...

7.8CVSS6.9AI score0.00254EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-1744

Malware in sbrugna...

7.8CVSS6.4AI score0.01042EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-0774

Malware in sbrugna...

5CVSS6.4AI score0.00409EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-29219

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00083EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2025/09/15 12:0 a.m.3 views

PT-2025-37724

Name of the Vulnerable Software and Affected Versions: ZKEACMS version 4.3 Description: A vulnerability exists in ZKEACMS that allows for server-side request forgery. The issue is located in the Proxy function within the src/ZKEACMS/Controllers/MediaController.cs file. Manipulation of the url...

6.5CVSS6.3AI score0.00083EPSS
Exploits0References9
OSV
OSVadded 2024/10/25 8:15 a.m.1 views

CVE-2024-9598

The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This is due to missing or incorrect nonce validation on the 'proxy' function. This makes it possible for unauthenticated attackers to send the...

8.8CVSS5.6AI score0.0055EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/10/25 12:0 a.m.3 views

PT-2024-39711 · WordPress · Amp For Wp – Accelerated Mobile Pages

Name of the Vulnerable Software and Affected Versions: AMP for WP – Accelerated Mobile Pages plugin for WordPress versions up to, and including, 1.0.99.1 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the proxy function. This allows...

8.8CVSS6.6AI score0.0055EPSS
Exploits0References6
CNNVD
CNNVDadded 2022/12/13 12:0 a.m.0 views

Pacparser 安全漏洞

Pacparser is a library for parsing Proxy Autoconfiguration PAC files by the individual developer Manu Garg. A security vulnerability exists in Pacparser versions prior to 1.3.x, which originates in the function pacparserfindproxy in the file src/pacparser.c, where manipulation of the parameter ur...

7.8CVSS7.7AI score0.0019EPSS
Exploits1References5
CNNVD
CNNVDadded 2022/04/13 12:0 a.m.1 views

Palo Alto Networks PAN-OS 安全漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances. A security vulnerability exists in the Palo Alto Networks PAN-OS software that originates from improper exception handling in the DNS proxy function...

5.9CVSS6AI score0.00782EPSS
Exploits0References5
OSV
OSVadded 2020/08/13 7:15 p.m.8 views

CVE-2020-24345

JerryScript through 2.3.0 allows stack consumption via function anew new Proxya,JSON.parse"",a. NOTE: the vendor states that the problem is the lack of the --stack-limit option...

7.8CVSS7.6AI score
Exploits0References1
Veracode
Veracodeadded 2018/07/06 1:13 a.m.17 views

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution. This happens when the NewTarget flag is passed on proxy function call trap. This CVE ID is unique from CVE-2017-11792, CVE-2017-11793, CVE-2017-11796, CVE-2017-11797, CVE-2017-11798, CVE-2017-11799, CVE-2017-11800, CVE-2017-11801,...

7.5CVSS7.7AI score0.78672EPSS
Exploits20References6Affected Software2
0day.today
0day.todayadded 2016/11/18 12:0 a.m.36 views

Microsoft Edge - eval Type Confusion Vulnerability

Exploit for windows platform in category dos / poc var p = new Proxyeval, ; p"alert"e""; 0day.today 2018-02-16...

7.6CVSS7.5AI score0.69291EPSS
Exploits1
exploitpack
exploitpackadded 2016/11/17 12:0 a.m.12 views

Microsoft Edge - eval Type Confusion

Microsoft Edge - eval Type Confusion var p = new Proxyeval, ; p"alert"e"";...

Exploits0
Exploit DB
Exploit DBadded 2016/11/17 12:0 a.m.33 views

Microsoft Edge - 'eval' Type Confusion

var p = new Proxyeval, ; p"alert"e"";...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.40 views

SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...

7.1AI score
Exploits0
NVD
NVDadded 2014/02/27 1:55 a.m.11 views

CVE-2014-0741

The certificate-import feature in the Certificate Authority Proxy Function CAPF CLI implementation in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461...

6.2CVSS6.2AI score0.00036EPSS
Exploits0References3
NVD
NVDadded 2014/02/27 1:55 a.m.15 views

CVE-2014-0742

The Certificate Authority Proxy Function CAPF CLI implementation in the CSR management feature in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464...

6.2CVSS6.4AI score0.00036EPSS
Exploits0References3
Prion
Prionadded 2014/02/27 1:55 a.m.16 views

Code injection

The Certificate Authority Proxy Function CAPF CLI implementation in the CSR management feature in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464...

6.2CVSS6.8AI score0.00036EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2014/02/27 1:55 a.m.11 views

Command injection

The Certificate Authority Proxy Function CAPF CLI implementation in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493...

6.8CVSS7AI score0.00049EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2014/02/27 1:55 a.m.11 views

Design/Logic Flaw

The certificate-import feature in the Certificate Authority Proxy Function CAPF CLI implementation in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum95461...

6.2CVSS6.7AI score0.00036EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder