Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentā€¢added 2026/04/01 1:34 p.m.ā€¢2 views

CVE-2026-34430 ByteDance DeerFlow LocalSandboxProvider Host Bash Escape

ByteDance Deer-Flow versions prior to commit 92c7a20 contain a sandbox escape vulnerability in bash tool handling that allows attackers to execute arbitrary commands on the host system by bypassing regex-based validation using shell features such as directory changes and relative paths. Attackers...

8.8CVSS6.3AI score0.00128EPSS
Exploits0References3
Veracode
Veracodeā€¢added 2025/04/02 11:58 p.m.ā€¢8 views

Arbitrary File Disclosure

Vite is vulnerable to Arbitrary File Disclosure. The vulnerability is due to improper handling of trailing separators in query strings and is caused by the removal of trailing separators ? without proper validation in regex checks, allows attackers to bypass file access restrictions and retrieve...

7.5CVSS7.2AI score0.89847EPSS
Exploits27References7Affected Software1
Kitploit
Kitploitā€¢added 2022/02/12 8:30 p.m.ā€¢36 views

truffleHog - Searches Through Git Repositories For High Entropy Strings And Secrets, Digging Deep Into Commit History

Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed. Join The Slack Have questions? Feedback? Jump in slack and hang out with me...

6.8AI score
Exploits0References3
CNVD
CNVDā€¢added 2020/04/16 12:0 a.m.ā€¢3 views

Squid Double Decode Bypass Vulnerability

Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. A security vulnerability exists in Squid 4.7 and earlier versions. An attacker can exploit this vulnerability to bypas...

9.8CVSS6.9AI score0.00549EPSS
Exploits0References1
Kitploit
Kitploitā€¢added 2018/03/06 8:13 p.m.ā€¢144 views

Gitleaks - Searches Full Repo History For Secrets And Keys

Searches Full Repo History For Secrets And Keys. Installing go get -u github.com/zricethezav/gitleaks Usage and Explanation ./gitleaks options Gitleaks audits local and remote repos by running regex checks against all commits. Options usage: gitleaks options / Options: -u --user Git user mode -r...

6.9AI score
Exploits0References2
Kitploit
Kitploitā€¢added 2018/01/10 8:12 p.m.ā€¢32 views

truffleHog - Searches Through Git Repositories For High Entropy Strings And Secrets, Digging Deep Into Commit History

Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed. NEW Trufflehog previously functioned by running entropy checks on git diffs. This functionality still exists, but high signal regex checks hav...

7.3AI score
Exploits0References1
Rows per page
Query Builder