Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

144 matches found

NVD
NVDadded 2026/06/14 9:16 p.m.9 views

CVE-2026-12186

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS0.01966EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/14 8:45 p.m.6 views

CVE-2026-12186 GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replace_country command injection

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS7.6AI score0.01966EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/14 8:45 p.m.10 views

EUVD-2026-36665

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS7.7AI score0.01966EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/14 8:45 p.m.22 views

CVE-2026-12186 GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replace_country command injection

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS0.01966EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/06/14 12:0 a.m.11 views

PT-2026-49144

Name of the Vulnerable Software and Affected Versions GL.iNet GL-MT3000 versions prior to 4.7 Description A command injection flaw exists in the Tor Proxy Service Configuration Handler. The issue is located within the replace country function in the /usr/lib/oui-httpd/rpc/tor library, allowing a...

9CVSS8.4AI score0.01966EPSS
Exploits0References8
Snyk
Snykadded 2026/04/21 10:0 p.m.4 views

Embedded Malicious Code

Overview kube-health-tools is a Lightweight Kubernetes node health diagnostics Affected versions of this package are vulnerable to Embedded Malicious Code that target Kubernetes environments by install a full LLM proxy service on the victim's machine, allowing the attacker to route LLM traffic...

9.8CVSS5.5AI score
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/21 10:2 p.m.3 views

CVE-2026-4528 trueleaf ApiFlow URL Validation http_proxy.service.ts validateUrlSecurity server-side request forgery

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS5.4AI score0.003EPSS
Exploits0References4
CVE
CVEadded 2026/03/21 10:2 p.m.12 views

CVE-2026-4528

CVE-2026-4528 affects trueleaf ApiFlow 0.9.7. The vulnerability lies in the function validateUrlSecurity within packages/server/src/service/proxy/http_proxy.service.ts of the URL Validation Handler , enabling server-side request forgery (SSRF) . Remote exploitation is possible and the exploit has...

7.5CVSS5.4AI score0.003EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/03/21 10:2 p.m.40 views

CVE-2026-4528 trueleaf ApiFlow URL Validation http_proxy.service.ts validateUrlSecurity server-side request forgery

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/httpproxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation ...

7.5CVSS0.003EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/03/21 12:0 a.m.8 views

PT-2026-26946

A vulnerability was determined in trueleaf ApiFlow 0.9.7. The impacted element is the function validateUrlSecurity of the file packages/server/src/service/proxy/http proxy.service.ts of the component URL Validation Handler. This manipulation causes server-side request forgery. Remote exploitation...

7.5CVSS6.7AI score0.003EPSS
Exploits0References7
CNNVD
CNNVDadded 2026/02/05 12:0 a.m.4 views

TexasSoft CyberPlanet 代码问题漏洞

TexasSoft CyberPlanet is an internet cafe billing and client management software developed by the Indian company TexasSoft. Version 6.4.131 of TexasSoft CyberPlanet contains a code vulnerability. This vulnerability stems from a service path in the CCSrvProxy service that lacks quotes, which may...

8.5CVSS7.7AI score0.0015EPSS
Exploits0References3
Veeam
Veeamadded 2026/01/15 12:0 a.m.16 views

Failed to create a restore point: PostgreSQL database operation failed multiple times with transient error.

Challenge After upgrading to Veeam Backup for Microsoft 365 8.2 or 8.3, jobs fail with the erorr: Failed to create a restore point: PostgreSQL database operation failed multiple times with transient error. Cause This issue occurs because various one-time PostgreSQL queries that the software...

7.3AI score
Exploits0Affected Software1
EUVD
EUVDadded 2025/12/09 3:18 a.m.4 views

EUVD-2025-201825

CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...

9.2CVSS7.5AI score0.00555EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-24493

Malware in sbrugna...

4.3CVSS4.8AI score0.00443EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-8665

Malware in sbrugna...

10CVSS9.2AI score0.03313EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2008-4116

Malware in sbrugna...

4.3CVSS6.4AI score0.04246EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2001-0539

Malware in sbrugna...

2.1CVSS6.4AI score0.01575EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2008-1741

Malware in sbrugna...

7.8CVSS6.3AI score0.01916EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-18197

Malware in sbrugna...

9.1CVSS8.8AI score0.02182EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-48233

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00404EPSS
Exploits0References1
Rows per page
Query Builder