Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34 matches found

CNNVD
CNNVDadded 6 days ago5 views

Red Hat OpenShift Container Platform 授权问题漏洞

Red Hat OpenShift Container Platform is a platform developed by Red Hat Inc. It helps enterprises develop, deploy, and manage existing container-based applications across physical, virtual, and public cloud infrastructures. There is an authorization vulnerability in Red Hat OpenShift Container...

7.4CVSS5.8AI score0.00038EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/04/20 6:8 p.m.80 views

Exploit for Improper Access Control in Fortinet Forticlientems

CVE-2026-35616 Author: wa6n3r | GitHubhttps://github...

9.8CVSS5.8AI score0.34753EPSS
Exploits7
GithubExploit
GithubExploitadded 2025/10/14 9:25 a.m.459 views

Exploit for CVE-2025-11001

🔒 Se7enSlip - 7-Zip Vulnerability Scanner A stunning, interac...

8.2CVSS6.5AI score0.00258EPSS
Exploits11
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-0281

Malware in sbrugna...

5.8CVSS7.1AI score0.00347EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-0283

Malware in sbrugna...

5.8CVSS7.1AI score0.00521EPSS
Exploits1References9
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-5216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was...

5.8CVSS6.9AI score0.00347EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2020-5217

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was...

5.8CVSS7AI score0.00521EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in fusion-plugin-secure-headers (npm)

The package fusion-plugin-secure-headers was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-21074 Malicious code in fusion-plugin-secure-headers (npm)

The package fusion-plugin-secure-headers was found to contain malicious code...

7.2AI score
Exploits0
Github Security Blog
Github Security Blogadded 2022/01/21 11:55 p.m.1157 views

node-fetch forwards secure headers to untrusted sites

node-fetch forwards secure headers such as authorization, www-authenticate, cookie, & cookie2 when redirecting to a untrusted site...

8.8CVSS7.7AI score0.0029EPSS
Exploits1References10Affected Software1
OSV
OSVadded 2021/11/09 3:15 p.m.1 views

CVE-2021-43195

In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing...

5.3CVSS6.1AI score
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/10/27 12:58 p.m.0 views

rubygem-secure_headers: limited header injection when using dynamic overrides with user input

A directive injection vulnerability was found in Secure Headers RubyGem before versions 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into the vulnerable function, a new line could be injected, leading to limited header injection, which could create a new Content Security Policy head...

5.8CVSS7.2AI score0.00347EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2020/10/27 12:58 p.m.1 views

rubygem-secure_headers: directive injection when using dynamic overrides with user input

A flaw was found in rubygem-secureheaders in versions prior to 6.2.0, 5.1.0, and 3.8.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a semicolon could be injected leading to directive injection which could be used to override a script-src directive. The...

5.8CVSS7.2AI score0.00521EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2020/02/10 3:14 p.m.16 views

CVE-2020-5216

A directive injection vulnerability was found in Secure Headers RubyGem before versions 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into the vulnerable function, a new line could be injected, leading to limited header injection, which could create a new Content Security Policy head...

5.8CVSS1.1AI score0.00347EPSS
Exploits1References4
OSV
OSVadded 2020/01/23 3:15 a.m.13 views

CVE-2020-5217

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a semicolon could be injected leading to directive injection. This could be us...

5.8CVSS5.7AI score
Exploits0References4
NVD
NVDadded 2020/01/23 3:15 a.m.9 views

CVE-2020-5217

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a semicolon could be injected leading to directive injection. This could be us...

5.8CVSS5.2AI score0.00521EPSS
Exploits1References4
NVD
NVDadded 2020/01/23 3:15 a.m.9 views

CVE-2020-5216

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a newline could be injected leading to limited header injection. Upon seeing a...

5.8CVSS5.2AI score0.00347EPSS
Exploits1References2
OSV
OSVadded 2020/01/23 3:15 a.m.11 views

CVE-2020-5216

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a newline could be injected leading to limited header injection. Upon seeing a...

5.8CVSS5.8AI score
Exploits0References2
OSV
OSVadded 2020/01/23 3:15 a.m.0 views

DEBIAN-CVE-2020-5217

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a semicolon could be injected leading to directive injection. This could be us...

5.8CVSS6.8AI score0.00521EPSS
Exploits1References1
OSV
OSVadded 2020/01/23 3:15 a.m.0 views

UBUNTU-CVE-2020-5216

In Secure Headers RubyGem secureheaders, a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into append/overridecontentsecuritypolicydirectives, a newline could be injected leading to limited header injection. Upon seeing a...

5.8CVSS7.2AI score0.00347EPSS
Exploits1References4
Rows per page
Query Builder