Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

GithubExploit
GithubExploitadded 2026/05/10 2:2 p.m.121 views

Exploit for Deserialization of Untrusted Data in Cisco Secure_Firewall_Management_Center

🚨 CVE-2026-20131 | Cisco FMC Critical RCE Unauthenticat...

10CVSS6.2AI score0.27551EPSS
Exploits4
Positive Technologies
Positive Technologiesadded 2026/04/08 12:0 a.m.4 views

PT-2026-31327

Name of the Vulnerable Software and Affected Versions Rapid7 Insight Agent versions affected versions not specified Description A flaw exists in the beaconing logic of the Rapid7 Insight Agent for Linux, potentially allowing an attacker to execute code remotely as root through a crafted beacon...

6.6CVSS6AI score0.0041EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/03/03 10:31 p.m.21 views

CVE-2026-26279 Froxlor Admin-to-Root Privilege Escalation via Input Validation Bypass + OS Command Injection

Froxlor is open source server administration software. Prior to 2.3.4, a typo in Froxlor's input validation code == instead of = completely disables email format checking for all settings fields declared as email type. This allows an authenticated admin to store arbitrary strings in the...

9.1CVSS0.00802EPSS
Exploits1References3
NVD
NVDadded 2025/12/23 10:15 p.m.3 views

CVE-2025-66213

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.451, an authenticated command injection vulnerability in the File Storage Directory Mount Path functionality allows users with application/service management permissions...

9.4CVSS0.02968EPSS
Exploits1References4
OSV
OSVadded 2024/11/22 8:15 p.m.1 views

CVE-2024-5717

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Logsign Unified SecOps Platform. Although authentication is required to exploit this vulnerability, the existing...

8.8CVSS6.4AI score0.02973EPSS
Exploits1References2
OSV
OSVadded 2024/01/10 1:15 p.m.3 views

CVE-2023-48257

The vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution RCE with root privileges on the device. The vulnerability can be exploited directly by authenticated users, via crafted HTTP requests, or indirectly by unauthenticate...

8.8CVSS5.9AI score
Exploits0References1
OSV
OSVadded 2022/12/06 12:15 a.m.0 views

CVE-2022-40918

Buffer overflow in firmware leweicam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+ FPV Drone allows attacker to gain remote code execution as root user via a specially crafted UDP packet. Please update the Reference section to these links http://thiscomputer.com/...

9.8CVSS6.4AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 2021/05/18 12:0 a.m.2 views

PT-2021-19242 · Unknown · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel affected versions not specified Description: The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection issue, which can lead to root Remote Code Execution. Recommendations: At the moment, there ...

10CVSS9.8AI score0.34062EPSS
Exploits1References3
Rows per page
Query Builder