Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-9119 Malicious code in @npm-aditech387/public-repo-ui (npm)

The package @npm-aditech387/public-repo-ui was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/08/14 6:23 p.m.3 views

CVE-2025-53789

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00318EPSS
Exploits0References1
NVD
NVDadded 2025/08/12 6:15 p.m.2 views

CVE-2025-53789

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00318EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2025/08/12 7:0 a.m.2 views

Windows StateRepository API Server file Elevation of Privilege Vulnerability

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00318EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2025/05/28 4:54 p.m.3 views

argocd: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS)

A flaw was found in Argo CD, where improper filtering of repository URLs in the UI allows JavaScript injection. A crafted javascript: link can lead to cross-site scripting when viewed by another user. This can result in unauthorized API actions via the victim's session...

9CVSS5.5AI score0.00067EPSS
Exploits0References5
seebug.org
seebug.orgadded 2018/03/07 12:0 a.m.94 views

Spring data rest 远程代码执行(cve-2017-8046)

漏洞描述 漏洞描述 Spring Data Rest 在处理 PATCH 请求时存在RCE高危漏洞, 可以使用手工构造的JSON数据构造恶意PATCH请求提交至spring-data-rest服务器,使得服务器运行恶意JAVA代码。Spring Data Rest项目的目标是提供一种灵活的、可配置的机制,编写出可以对外暴露出HTTP协议的简单服务。 Git地址: https://github.com/spring-projects/spring-data-rest 漏洞来源: https://pivotal.io/security/cve-2017-8046 影响版本: Spring...

7.5CVSS0.1AI score0.93978EPSS
Exploits6
Rows per page
Query Builder