Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

9 matches found

GithubExploit
GithubExploitβ€’added 2026/05/01 3:25 a.m.β€’54 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940 Auto Exploit !Pythonhttps://img.shields.io/...

9.8CVSS5.5AI score0.90339EPSS
Exploits61
CVE
CVEβ€’added 2026/03/26 7:0 p.m.β€’11 views

CVE-2026-26213

The CVE-2026-26213 issue affects thingino-firmware up to firmware-2026-03-16, where an unauthenticated OS command injection exists in the WiFi captive portal CGI script. An attacker can inject malicious code through unsanitized HTTP parameter names, exploiting eval in parse_query() and parse_post...

9.8CVSS6.8AI score0.00212EPSS
Exploits0References2Affected Software1
OSV
OSVβ€’added 2026/03/13 7:54 p.m.β€’1 views

CVE-2026-22209

thingino-firmware up to commit e3f6a41 published on 2026-03-15 contains an unauthenticated os command injection vulnerability in the WiFi captive portal CGI script that allows remote attackers to execute arbitrary commands as root by injecting malicious code through unsanitized HTTP parameter...

8.8CVSS6.7AI score
Exploits0References2
NVD
NVDβ€’added 2025/12/09 9:15 p.m.β€’4 views

CVE-2023-53771

MiniDVBLinux 5.4 contains an authentication bypass vulnerability that allows remote attackers to change the root password without authentication. Attackers can send crafted POST requests to the system setup endpoint with modified SYSTEMPASSWORD parameters to reset root credentials...

9.8CVSS0.01066EPSS
Exploits1References4
Positive Technologies
Positive Technologiesβ€’added 2025/12/09 12:0 a.m.β€’4 views

PT-2025-50268

Name of the Vulnerable Software and Affected Versions MiniDVBLinux version 5.4 Description The software contains a flaw that allows remote attackers to bypass authentication and modify the root password. This is achieved by sending specially crafted POST requests to the system setup endpoint,...

9.8CVSS7AI score0.01066EPSS
Exploits1References10
OSV
OSVβ€’added 2019/05/23 4:29 p.m.β€’1 views

CVE-2019-12301

The Percona Server 5.6.44-85.0-1 packages for Debian and Ubuntu suffered an issue where the server would reset the root password to a blank value upon an upgrade. This was fixed in 5.6.44-85.0-2...

9.8CVSS7.3AI score0.00293EPSS
Exploits0References2
seebug.org
seebug.orgβ€’added 2017/12/06 12:0 a.m.β€’52 views

Coredy CX-E120 Repeater Multiple Vulnerabilities

Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in Coredy CX-E120 Repeater. The Coredy CX-E120 WiFi Range Extender is β€œa network device with multifunction, which can be using for increasing the distance of a WiFi network by boosting the existing WiFi signal an...

7.7AI score
Exploits0
Exploit DB
Exploit DBβ€’added 2010/10/21 12:0 a.m.β€’39 views

Sawmill Enterprise < 8.1.7.3 - Multiple Vulnerabilities

SEC Consult Security Advisory ======================================================================= title: Multiple critical vulnerabilities product: Sawmill - Universal Log File Analysis vulnerable version: Sawmill Enterprise v8.1.7.3 fixed version: v8.1.7.3 impact: critical homepage:...

7.4AI score
Exploits0
Cvelist
Cvelistβ€’added 2008/05/12 5:0 p.m.β€’14 views

CVE-2008-2140

Cross-site request forgery CSRF vulnerability in the rootpw plugin in rPath Appliance Platform Agent 2 and 3 allows remote attackers to reset the root password as the administrator via a crafted URL...

7AI score0.00124EPSS
Exploits0References2
Rows per page
Query Builder