Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2025/12/19 2:9 p.m.1 views

CVE-2025-63951

An insecure deserialization vulnerability exists in the rss-mp3.php script of the MiczFlor RPi-Jukebox-RFID project through commit 4b2334f0ae0e87c0568876fc41c48c38aa9a7014 2025-10-07. The 'rss' GET parameter receives data that is passed directly to the unserialize function without validation. Thi...

7.5CVSS7.2AI score0.00978EPSS
Exploits1References1
NVD
NVDadded 2025/12/18 9:15 p.m.1 views

CVE-2025-63951

An insecure deserialization vulnerability exists in the rss-mp3.php script of the MiczFlor RPi-Jukebox-RFID project through commit 4b2334f0ae0e87c0568876fc41c48c38aa9a7014 2025-10-07. The 'rss' GET parameter receives data that is passed directly to the unserialize function without validation. Thi...

7.5CVSS0.00978EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/12/18 12:0 a.m.19 views

CVE-2025-63951

An insecure deserialization vulnerability exists in the rss-mp3.php script of the MiczFlor RPi-Jukebox-RFID project through commit 4b2334f0ae0e87c0568876fc41c48c38aa9a7014 2025-10-07. The 'rss' GET parameter receives data that is passed directly to the unserialize function without validation. Thi...

0.00978EPSS
Exploits1References2
OSV
OSVadded 2022/10/13 9:15 p.m.8 views

CVE-2022-41495

ClipperCMS 1.3.3 was discovered to contain a Server-Side Request Forgery SSRF via the rssurlnews parameter at /manager/index.php...

9.8CVSS7.3AI score
Exploits0References1
Prion
Prionadded 2022/10/13 9:15 p.m.8 views

Server side request forgery (ssrf)

ClipperCMS 1.3.3 was discovered to contain a Server-Side Request Forgery SSRF via the rssurlnews parameter at /manager/index.php...

7.5CVSS9.5AI score0.00412EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2018/12/17 3:29 p.m.13 views

CVE-2018-20172

An issue was discovered in Nagios XI before 5.5.8. The rssurl parameter of rssdashlet/magpierss/scripts/magpieslashbox.php is not filtered, resulting in an XSS vulnerability...

6.1CVSS6AI score0.03828EPSS
Exploits1References2
Prion
Prionadded 2018/12/17 3:29 p.m.14 views

Design/Logic Flaw

An issue was discovered in Nagios XI before 5.5.8. The rssurl parameter of rssdashlet/magpierss/scripts/magpieslashbox.php is not filtered, resulting in an XSS vulnerability...

4.3CVSS6AI score0.03828EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2008/10/22 10:30 a.m.9 views

CVE-2008-4667

Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the rss parameter...

7.5CVSS7.1AI score0.03461EPSS
Exploits1References5
Prion
Prionadded 2008/10/22 10:30 a.m.11 views

Directory traversal

Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the rss parameter...

7.5CVSS7.6AI score0.03461EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder