Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 6:34 p.m.7 views

CVE-2021-32706

Pi-hole's Web interface provides a central location to manage a Pi-hole instance and review performance statistics. Prior to Pi-hole Web interface version 5.5.1, the validDomainWildcard pregmatch filter allows a malicious character through that can be used to execute code, list directories, and...

8.8CVSS6.8AI score0.61046EPSS
Exploits3References1
Vulnrichment
Vulnrichmentadded 2025/04/01 6:20 p.m.7 views

CVE-2025-31137 Remix and React Router allow URL manipulation via Host / X-Forwarded-Host headers

React Router is a multi-strategy router for React bridging the gap from React 18 to React 19. There is a vulnerability in Remix/React Router that affects all Remix 2 and React Router 7 consumers using the Express adapter. Basically, this vulnerability allows anyone to spoof the URL used in an...

7.5CVSS7.1AI score0.00095EPSS
Exploits0References1
Zero Science Lab
Zero Science Labadded 2024/10/22 12:0 a.m.343 views

ABB Cylon Aspect 3.08.01 (logCriticalLookup.php) Unauthenticated Log Disclosure

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB BMS/BAS controller suffers from an unauthenticated log...

5.8AI score
Exploits0
Packet Storm
Packet Stormadded 2016/07/10 12:0 a.m.33 views

WordPress Ultimate Member 1.3.64 Local File Inclusion

------------------------------------------------------------------------ Ultimate Member Local File Inclusion vulnerability ------------------------------------------------------------------------ Burak Kelebek, July 2016 ------------------------------------------------------------------------...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2015/12/08 12:0 a.m.46 views

OpenMRS 2.3 (1.11.4) - XML External Entity Processing

!/usr/bin/env python OpenMRS 2.3 1.11.4 XML External Entity XXE Processing PoC Exploit Vendor: OpenMRS Inc. Product web page: http://www.openmrs.org Affected version: OpenMRS 2.3, 2.2, 2.1, 2.0 Platform 1.11.4 Build 6ebcaf, 1.11.2 and 1.10.0 OpenMRS-TB System OpenMRS 1.9.7 Build 60bd9b Summary:...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Labadded 2013/08/11 12:0 a.m.25 views

Gnew v2013.1 Multiple XSS And SQL Injection Vulnerabilities

Summary Gnew is a simple Content Management System written with PHP language and using a database server MySQL, PostgreSQL or SQLite for storage. Description Input passed via several parameters is not properly sanitised before being returned to the user or used in SQL queries. This can be exploit...

7.5CVSS6AI score0.00817EPSS
Exploits6
securityvulns
securityvulnsadded 2006/10/31 12:0 a.m.49 views

Punbb <= 1.2.13 Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -= PunBB = 1.2.13 Multiple Vulnerabilities =- Written on : 2006/10/10 Released on : 2006/10/29 Author : Nms nms at wargan dot org Affected application : PunBB = 1.2.13 Type of vulnerability : SQL Injection and Local File Inclusion Required PHP...

9AI score
Exploits0
Rows per page
Query Builder