Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Snyk
Snykadded 2026/04/08 12:8 a.m.1 views

Cross-site Scripting (XSS)

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Cross-site Scripting XSS in the handling of programme titles from user-supplied XML in the EPG feature. An attacker can execute arbitrary JavaScript in the browser...

5.4CVSS5.8AI score0.00034EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2025/12/30 3:37 p.m.4 views

axios-cache-interceptor Vulnerable to Cache Poisoning via Ignored HTTP Vary Header

Summary When a server calls an upstream service using different auth tokens, axios-cache-interceptor returns incorrect cached responses, leading to authorization bypass. Details The cache key is generated only from the URL, ignoring request headers like Authorization. When the server responds wit...

6.5CVSS7AI score0.00031EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2025/10/18 7:15 a.m.2 views

CVE-2025-11703

The WP Go Maps formerly WP Google Maps plugin for WordPress is vulnerable to Cache Poisoning in all versions up to, and including, 9.0.48. This is due to the plugin not serving cached data from server-side responses and instead relying on user-input. This makes it possible for unauthenticated...

5.3CVSS0.00029EPSS
Exploits0References4
Veracode
Veracodeadded 2023/06/02 4:27 a.m.17 views

Information Disclosure

toui is vulnerable to Information Disclosure. The vulnerability exists because Website.uservars are available to all users via server side caching, which leads user-specific variables to being shared between users...

9.1CVSS6.8AI score0.00697EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2023/01/29 12:0 a.m.1 views

cimage 跨站脚本漏洞

cimage is an application by Mikael Roos personal developer. It is used for server-side image resizing and dynamic cropping, and uses PHP to cache generated image files. A cross-site scripting vulnerability exists in cimage, which stems from a parameter in checksystem.php that causes cross-site...

6.1CVSS4.2AI score0.00303EPSS
Exploits0References5
Imperva Blog
Imperva Blogadded 2019/01/24 8:21 p.m.148 views

Seven Must-Dos to Secure MySQL 8.0

Most database breaches are blamed on insiders such as employees who are either malicious or whose security has been compromised. In fact, most of these breaches are actually caused by poor security configuration and privilege abuse. Every new database version brings security upgrades. Use them...

0.3AI score
Exploits0
Citrix
Citrixadded 2016/12/23 12:0 a.m.6 views

Any Write cache mode which involves the Target Device local HDD reverts to server side caching

When trying to configure the write cache, any selection that involves the local HDD of the target device would fail. Cache on device ram - works Cache on server - works Ram with overflow - fails to server Cache on Device HD - fails to server...

7.2AI score
Exploits0
Rows per page
Query Builder