Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/03/26 3:30 p.m.1 views

EUVD-2018-21684

Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH chain overwrite and inject shellcode through the DNS Query...

8.6CVSS6.8AI score0.00008EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2026/03/26 12:0 a.m.1 views

PT-2026-28250

Name of the Vulnerable Software and Affected Versions Nsauditor version 3.0.28.0 Description A structured exception handling SEH buffer overflow allows local attackers to execute arbitrary code by providing malicious input to the DNS Lookup tool. Attackers can craft a payload that overwrites the...

8.6CVSS6.6AI score0.00008EPSS
Exploits1References6
CVE
CVEadded 2026/03/11 7:58 p.m.4 views

CVE-2026-32234

Parse Server vulnerability CVE-2026-32234 affects deployments using PostgreSQL. A crafted field name in a $regex query constraint can be interpolated into SQL when an attacker has master-key access, bypassing the Parse Server layer and enabling database-level SQL injection. Affected versions are ...

5.1CVSS5.8AI score0.00043EPSS
Exploits0References3Affected Software1
GithubExploit
GithubExploitadded 2025/09/26 4:38 p.m.551 views

Exploit for CVE-2025-55817

This is a PoC exploit for CVE-2025-55817, a Stored Cross Site Sc...

5.7AI score
Exploits1
CNNVD
CNNVDadded 2023/09/22 12:0 a.m.0 views

JeecgBoot SQL Injection Vulnerability

JeecgBoot is a Chinese Java low-code platform for enterprise web applications. JeecgBoot jeecg-boot versions 3.0 and 3.5.3 are vulnerable to a SQL injection vulnerability that stems from the presence of a SQL injection vulnerability. An attacker can exploit this vulnerability to execute arbitrary...

9.8CVSS8.6AI score0.38659EPSS
Exploits0References2
CNNVD
CNNVDadded 2021/10/19 12:0 a.m.2 views

Combodo iTop 跨站脚本漏洞

Combodo iTop is a French company Combodo ITIL-based development and for the daily operation of the IT environment of open source Web applications. The program provides incident management, configuration management and problem management. A cross-site scripting vulnerability exists in Combodo iTop...

8.1CVSS4.9AI score0.00423EPSS
Exploits0References5
NVD
NVDadded 2007/05/24 7:30 p.m.10 views

CVE-2007-2858

SQL injection vulnerability in the IP-Search functionality in the IP-Tracking Mod for phpBB 2.0.x allows remote authenticated administrators to execute arbitrary SQL commands via the Search Query field...

6.5CVSS8AI score0.00412EPSS
Exploits0References4
Prion
Prionadded 2007/05/24 7:30 p.m.7 views

Sql injection

SQL injection vulnerability in the IP-Search functionality in the IP-Tracking Mod for phpBB 2.0.x allows remote authenticated administrators to execute arbitrary SQL commands via the Search Query field...

6.5CVSS8.7AI score0.00412EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder