Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:35 p.m.7 views

CVE-2023-45892

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information...

7.5CVSS6.9AI score0.00578EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-1999-1355

Malware in sbrugna...

5CVSS6.4AI score0.01936EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 5:1 a.m.7 views

CVE-2023-45893

An indirect Object Reference IDOR in the Order and Invoice pages in Floorsight Customer Portal Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information...

7.5CVSS6.9AI score0.00578EPSS
Exploits0
Cvelist
Cvelistadded 2024/12/14 4:23 a.m.12 views

CVE-2024-12578 Tickera – WordPress Event Ticketing <= 3.5.4.8 - Unauthenticated Customer Data Exposure

The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.5.4.8 via the 'tickeraticketsinfo' endpoint. This makes it possible for unauthenticated attackers to extract sensitive data from bookings like full names, ema...

5.3CVSS0.0048EPSS
Exploits0References2
Hacker One
Hacker Oneadded 2024/11/08 11:0 a.m.6 views

Mars: Users Data Exposure via Insecure Endpoint

An insecure endpoint on the Mars Royal Canin website exposed sensitive customer information without proper authentication. Personal data, including full names, phone numbers, email addresses, physical addresses, and postal codes, was accessible through a simple API endpoint that could be accessed...

6.8AI score
Exploits0
Prion
Prionadded 2024/01/02 9:15 p.m.13 views

Information disclosure

An indirect Object Reference IDOR in the Order and Invoice pages in Floorsight Customer Portal Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information...

5CVSS7.2AI score0.00578EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/01/02 12:0 a.m.16 views

CVE-2023-45892

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information...

7.7AI score0.00578EPSS
Exploits0References1
OpenVAS
OpenVASadded 2017/04/27 12:0 a.m.33 views

Magento Arbitrary File Upload Vulnerability

Magento Web E-Commerce Platform is prone to an arbitrary file upload vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.4AI score
Exploits0References2
ThreatPost
ThreatPostadded 2009/09/15 4:45 p.m.15 views

Security Pros Are Focused on the Wrong Threats

From The New York Times Riva Richmond Corporate information technology departments are prioritizing the wrong threats to their computer systems, focusing on old problems and leaving their companies open to a raft of new cyberattacks targeting sensitive customer and corporate information. That is...

0.9AI score
Exploits0References4
Rows per page
Query Builder