Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2026/05/08 11:49 a.m.3 views

BIT-PYTHON-MIN-2025-13836 Excessive read buffering DoS in http.client

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS...

7.5CVSS6.7AI score0.00215EPSS
Exploits0References10
CNNVD
CNNVDadded 2026/03/21 12:0 a.m.3 views

WordPress plugin Post Affiliate Pro 代码问题漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.5CVSS6AI score0.00034EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/10 12:0 a.m.6 views

EulerOS 2.0 SP13 : python3 (EulerOS-SA-2026-1256)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : If the value passed to os.path.expandvars is user-controlled a performance degradation is possible when expanding environment...

7.5CVSS7AI score0.00215EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2025/12/27 12:0 a.m.1 views

openSUSE 15 Security Update : python39 (SUSE-SU-2025:4522-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4522-1 advisory. - CVE-2025-12084: quadratic complexity when building nested elements using xml.dom.minidom methods that depend on clearidcache can lead to availabili...

7.5CVSS7.3AI score0.00215EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2024/05/23 12:0 a.m.2 views

PT-2025-48535

Name of the Vulnerable Software and Affected Versions python3.9 python3.11 python3.13 Description When reading an HTTP response from a server, if no read amount is specified, the default behavior is to use Content-Length. This allows a malicious server to cause the client to read large amounts of...

7.8CVSS6.5AI score0.00215EPSS
Exploits0References219
Hacker One
Hacker Oneadded 2019/03/12 2:32 p.m.500 views

Omise: SSRF in webhooks leads to AWS private keys disclosure

Vulnerability Summary Omise makes use of Amazon AWS as their application environment. Due to a vulnerability in the way webhooks are implemented, an attacker can make arbitrary HTTP/HTTPS requests from the application server and read their responses. This is known as a server-side request forgery...

0.6AI score
Exploits0
Rows per page
Query Builder