Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Snyk
Snykadded 2026/03/10 1:15 a.m.2 views

Authorization Bypass Through User-Controlled Key

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

5.3CVSS5.9AI score0.0002EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/03/10 12:0 a.m.2 views

OneUptime 安全漏洞

OneUptime is a comprehensive open-source solution developed by OneUptime. It is used to monitor and manage your online services. OneUptime has a security vulnerability, which stems from insufficient ownership verification for the resend-verification-code endpoint. This vulnerability may lead to t...

5.3CVSS5.8AI score0.0002EPSS
Exploits1References2
OSV
OSVadded 2025/11/12 7:18 p.m.0 views

MAL-2025-174828 Malicious code in hunim-satu-aniunifag (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a70aafa037fa2f3c5631188f9d2e39dce34c063f8f0e94f2e9a7e48885e6e688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Vulnrichment
Vulnrichmentadded 2025/03/27 4:43 p.m.1 views

CVE-2023-52993 x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL

In the Linux kernel, the following vulnerability has been resolved: x86/i8259: Mark legacy PIC interrupts with IRQLEVEL Baoquan reported that after triggering a crash the subsequent crash-kernel fails to boot about half of the time. It triggers a NULL pointer dereference in the periodic tick code...

6.4AI score0.00007EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2022/12/23 12:0 a.m.1 views

PT-2022-28037 · Rdiffweb · Rdiffweb

Name of the Vulnerable Software and Affected Versions: rdiffweb versions prior to 2.5.5 Description: The issue is related to the allocation of resources without limits or throttling in the rdiffweb GitHub repository. Specifically, there is no rate limit on the "resend email feature" when enabling...

7.1CVSS6.1AI score0.00236EPSS
Exploits1References10
OSV
OSVadded 2022/08/22 3:15 p.m.1 views

CVE-2022-34772

Tabit - password enumeration. Description: Tabit - password enumeration. The passwords for the Tabit system is a 4 digit OTP. One can resend OTP and try logging in indefinitely. Once again, this is an example of OWASP: API4 - Rate limiting...

8.8CVSS5.8AI score0.0026EPSS
Exploits0References1
n0where
n0whereadded 2015/09/15 3:39 a.m.44 views

WPS attack tool: Penetrator-WPS

This is experimental tool that is capable of attacking multiple WPS-enabled wireless access points in real time Penetrator-WPS utilizes the pixie-dust attack every time it receives M3 message, unless it is disabled with -P – pixie-dust requires pixiewps to be installed. Installation First, you ne...

0.3AI score
Exploits0References1
Rows per page
Query Builder