Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28034 matches found

ATTACKERKB
ATTACKERKBadded 2026/03/25 8:40 p.m.5 views

CVE-2026-1014

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/25 8:38 p.m.2 views

CVE-2025-64648 Multiple Vulnerabilities in IBM Concert Software

IBM Concert 1.0.0 through 2.2.0 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques...

5.9CVSS5.8AI score0.00186EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/25 8:37 p.m.3 views

CVE-2025-64647

IBM Concert 1.0.0 through 2.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.8AI score0.00202EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/25 8:37 p.m.3 views

CVE-2025-64647 Multiple Vulnerabilities in IBM Concert Software

IBM Concert 1.0.0 through 2.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.8AI score0.00202EPSS
Exploits0References1
CVE
CVEadded 2026/03/25 8:37 p.m.13 views

CVE-2025-64647

CVE-2025-64647 affects IBM Concert, versions 1.0.0 through 2.2.0. The flaw is use of weaker-than-expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. The connected sources corroborate this characterization, but no specific root-cause technical de...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2026/03/25 8:34 p.m.18 views

CVE-2025-36440

CVE-2025-36440 affects IBM Concert versions 1.0.0 through 2.2.0. The vulnerability arises from missing function-level access control, enabling a local user to obtain sensitive information. The NVD entry and CVE records corroborate the vendor-reported impact and scope. The provided metrics indicat...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2026/03/25 8:16 p.m.2 views

CVE-2025-14790

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due to insufficiently protected credentials...

6.5CVSS0.00204EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/25 8:11 p.m.20 views

CVE-2025-14810 IBM InfoSphere Information Server is vulnerable due to insufficient session expiration

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 does not invalidate a session after privileges have been modified which could allow an authenticated user to retain access to sensitive information. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CWE: CWE-613: Insufficient Session Expirati...

6.3CVSS0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/25 8:11 p.m.2 views

CVE-2025-14810 IBM InfoSphere Information Server is vulnerable due to insufficient session expiration

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 does not invalidate a session after privileges have been modified which could allow an authenticated user to retain access to sensitive information. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CWE: CWE-613: Insufficient Session Expirati...

6.3CVSS5.8AI score0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/25 8:9 p.m.1 views

CVE-2025-14808 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques...

3.1CVSS5.8AI score0.00225EPSS
Exploits0References1
CVE
CVEadded 2026/03/25 8:9 p.m.7 views

CVE-2025-14808

Summary: CVE-2025-14808 affects IBM InfoSphere Information Server 11.7.0.0–11.7.1.6. The issue allows information disclosure by reading sensitive data from the query string of an HTTP GET request, potentially exploitable via man‑in‑the‑middle techniques. The root cause is disclosure through the q...

3.1CVSS5.8AI score0.00225EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/03/25 8:9 p.m.22 views

CVE-2025-14808 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques...

3.1CVSS0.00225EPSS
Exploits0References1
CVE
CVEadded 2026/03/25 8:6 p.m.9 views

CVE-2025-14790

CVE-2025-14790 affects IBM InfoSphere Information Server 11.7.0.0–11.7.1.6, with information disclosure caused by insufficiently protected credentials. The CVSS v3.1 base score is 6.5 (Network attack, low attack complexity, user interaction none, privileges required low). Connected sources corrob...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2026/03/25 6:31 p.m.3 views

EUVD-2026-15912

Insertion of Sensitive Information Into Sent Data vulnerability in Noor Alam SMTP Mailer smtp-mailer allows Retrieve Embedded Sensitive Data.This issue affects SMTP Mailer: from n/a through = 1.1.24...

7.5CVSS5.8AI score0.00238EPSS
Exploits0References2
NVD
NVDadded 2026/03/25 5:17 p.m.5 views

CVE-2026-32538

Insertion of Sensitive Information Into Sent Data vulnerability in Noor Alam SMTP Mailer smtp-mailer allows Retrieve Embedded Sensitive Data.This issue affects SMTP Mailer: from n/a through = 1.1.24...

7.5CVSS0.00238EPSS
Exploits0References1
NVD
NVDadded 2026/03/25 5:16 p.m.2 views

CVE-2026-25339

Insertion of Sensitive Information Into Sent Data vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Retrieve Embedded Sensitive Data.This issue affects Contact Form by WPForms: from n/a through = 1.9.8.7...

6.5CVSS0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/25 4:15 p.m.1 views

CVE-2026-32538

Insertion of Sensitive Information Into Sent Data vulnerability in Noor Alam SMTP Mailer smtp-mailer allows Retrieve Embedded Sensitive Data.This issue affects SMTP Mailer: from n/a through = 1.1.24...

5.8AI score0.00238EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/25 4:15 p.m.26 views

CVE-2026-32538 WordPress SMTP Mailer plugin <= 1.1.24 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Noor Alam SMTP Mailer smtp-mailer allows Retrieve Embedded Sensitive Data.This issue affects SMTP Mailer: from n/a through = 1.1.24...

7.5CVSS0.00238EPSS
Exploits0References1
CVE
CVEadded 2026/03/25 4:15 p.m.12 views

CVE-2026-32538

CVE-2026-32538 : WordPress SMTP Mailer plugin

7.5CVSS5.8AI score0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/25 4:15 p.m.4 views

CVE-2026-32538 WordPress SMTP Mailer plugin <= 1.1.24 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Noor Alam SMTP Mailer smtp-mailer allows Retrieve Embedded Sensitive Data.This issue affects SMTP Mailer: from n/a through = 1.1.24...

5.8AI score0.00238EPSS
Exploits0References1
Rows per page
Query Builder