Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2026/02/13 3:15 a.m.1 views

CVE-2026-1721

Summary A Reflected Cross-Site Scripting XSS vulnerability was discovered in the AI Playground's OAuth callback handler. The errordescription query parameter was directly interpolated into an HTML script tag without proper escaping, allowing attackers to execute arbitrary JavaScript in the contex...

6.2CVSS6.1AI score
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-2269

Malware in sbrugna...

6CVSS6.4AI score0.00179EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2012-4634

Malware in sbrugna...

6.9CVSS6.4AI score0.00152EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-0270

Malware in sbrugna...

8.8CVSS8.6AI score0.00246EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/08/12 12:0 a.m.4 views

PT-2024-29977 · Etcd +2 · Etcd +2

Name of the Vulnerable Software and Affected Versions: Kamaji versions 1.0.0 and earlier Description: The issue arises from Kamaji using an "open at the top" range definition in RBAC for etcd roles, allowing some TCPs API servers to read, write, and delete the data of other control planes. This c...

9.9CVSS7.2AI score0.00425EPSS
Exploits1References12
OSV
OSVadded 2024/06/27 7:15 p.m.5 views

CVE-2024-5885

stangirard/quivr version 0.0.236 contains a Server-Side Request Forgery SSRF vulnerability. The application does not provide sufficient controls when crawling a website, allowing an attacker to access applications on the local network. This vulnerability could allow a malicious user to gain acces...

8.6CVSS6.9AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/12/19 12:0 a.m.2 views

PT-2023-32830 · Bitnami +4 · Mlflow +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A malicious user could use this issue to access internal HTTPs servers. In the worst case, such as an AWS instance, it could be abused to get a remote...

9.8CVSS8.8AI score0.02591EPSS
Exploits1References10
NVD
NVDadded 2021/09/08 2:15 p.m.22 views

CVE-2021-30720

A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. A malicious website may be able to access restricted ports on arbitrary servers...

5.8CVSS0.00383EPSS
Exploits0References5
OSV
OSVadded 2021/03/29 8:15 p.m.2 views

CVE-2020-35137

The MobileIron agents through 2021-03-22 for Android and iOS contain a hardcoded API key, used to communicate with the MobileIron SaaS discovery API, as demonstrated by Mobile@Work aka com.mobileiron. The key is in com/mobileiron/registration/RegisterActivity.java and can be used for...

7.5CVSS5.8AI score
Exploits0References3
PyPA
PyPAadded 2020/07/17 9:15 p.m.4 views

PYSEC-2020-51

In jupyterhub-kubespawner before 0.12, certain usernames will be able to craft particular server names which will grant them access to the default server of other users who have matching usernames. This has been fixed in 0.12...

8.1CVSS9.1AI score0.00219EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder