Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/06/03 9:51 p.m.12 views

CVE-2026-35193

A flaw was found in Django. This vulnerability allows a remote attacker to read private cached responses. This occurs because the UpdateCacheMiddleware in Django does not correctly add the Authorization header to the Vary response header for requests that include an Authorization header but lack...

3.1CVSS5.7AI score0.0004EPSS
Exploits0References6
PyPA
PyPAadded 2026/05/05 4:16 p.m.13 views

PYSEC-2026-50

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14.Response headers do not vary on cookies if a session is not modified, but SESSIONSAVEEVERYREQUEST is True. A remote attacker can steal a user's session after that user visits a cached public page.Earlier, unsupported Django series...

6.5CVSS5.8AI score0.00045EPSS
Exploits0References4Affected Software1
EUVD
EUVDadded 2026/03/18 12:30 a.m.1 views

EUVD-2025-208810

IBM Planning Analytics Local 2.1.0 through 2.1.17 could allow an attacker to trick the caching mechanism into storing and serving sensitive, user-specific responses as publicly cacheable resources...

5.7CVSS5.8AI score0.00015EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/17 9:50 p.m.1 views

CVE-2025-14806 IBM Planning Analytics Information Disclosure

IBM Planning Analytics Local 2.1.0 through 2.1.17 could allow an attacker to trick the caching mechanism into storing and serving sensitive, user-specific responses as publicly cacheable resources...

5.7CVSS5.8AI score0.00015EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/17 12:0 a.m.3 views

IBM Planning Analytics Local 安全漏洞

IBM Planning Analytics Local is a web-based local architecture of the International Business Machines IBM company. Versions of IBM Planning Analytics Local from 2.1.0 to 2.1.17 have security vulnerabilities. These vulnerabilities stem from caching mechanisms, which may allow attackers to trick th...

5.7CVSS5.8AI score0.00015EPSS
Exploits0References1
Snyk
Snykadded 2025/11/18 5:43 p.m.1 views

Use of Web Browser Cache Containing Sensitive Information

Overview drupal/core is an an open source content management platform powering millions of websites and applications. Affected versions of this package are vulnerable to Use of Web Browser Cache Containing Sensitive Information via the HTTP header Cache-Control: public, which may be applied by a...

3.7CVSS6.7AI score0.00011EPSS
Exploits0References2
OSV
OSVadded 2024/02/27 4:15 p.m.2 views

DEBIAN-CVE-2024-26144

Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user's session cookie when serving blobs. It also sets Cache-Control to public. Certain...

5.3CVSS5.4AI score0.02363EPSS
Exploits0References1
OSV
OSVadded 2019/07/10 4:15 p.m.1 views

DEBIAN-CVE-2019-12474

Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak. Privileged API responses that include whether a recent change has been patrolled may be cached publicly. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6...

7.5CVSS6.7AI score0.00246EPSS
Exploits0References1
Rows per page
Query Builder