Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

EUVD
EUVDadded 2026/06/11 12:58 p.m.9 views

EUVD-2026-36243

Boruta is a standalone authorization server that aims to implement OAuth 2.0 and Openid Connect up to decentralized identity specifications. Prior to version 0.9.1, boruta session cookies and the identity “remember me” cookie were set without the Secure attribute. In deployments where users could...

8.8CVSS5.5AI score0.00259EPSS
Exploits0References3
OSV
OSVadded 2026/04/21 6:16 p.m.8 views

PYSEC-2026-125

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev98, the setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted prox...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/04/21 5:14 p.m.4 views

CVE-2026-40594 pyLoad: Session Cookie Security Downgrade via Untrusted X-Forwarded-Proto Header Spoofing (Global State Race Condition)

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev98, the setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted prox...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References1
OSV
OSVadded 2026/04/16 1:20 a.m.5 views

GHSA-MP82-FMJ6-F22V pyLoad has a Session Cookie Security Downgrade via Untrusted X-Forwarded-Proto Header Spoofing (Global State Race Condition)

Summary The setsessioncookiesecure beforerequest handler in src/pyload/webui/app/init.py reads the X-Forwarded-Proto header from any HTTP request without validating that the request originates from a trusted proxy, then mutates the global Flask configuration SESSIONCOOKIESECURE on every request...

4.8CVSS5.8AI score0.00171EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.6 views

PT-2025-49823

An XSS vulnerability in pxc portSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS6.3AI score0.08236EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2009-5008

Malware in sbrugna...

5CVSS6.4AI score0.01064EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-26027

Malware in sbrugna...

5.3CVSS4.8AI score0.00986EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2014-3113

Malware in sbrugna...

5CVSS6.4AI score0.01667EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-15658

Malware in sbrugna...

9.8CVSS9.3AI score0.03205EPSS
Exploits3References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-19270

Malware in sbrugna...

7.5CVSS7.6AI score0.0151EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2009-1472

Malware in sbrugna...

7.6CVSS6.4AI score0.01684EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-1114

Malware in sbrugna...

8.8CVSS8.8AI score0.0106EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-4611

Malware in sbrugna...

4.3CVSS6.4AI score0.02109EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2008-3647

Malware in sbrugna...

5CVSS6AI score0.02502EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.15 views

EUVD-2008-3648

Malware in sbrugna...

5CVSS6.1AI score0.01843EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-18180

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.0025EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-54140

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00245EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-28960

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00537EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-46386

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.0036EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-47776

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00447EPSS
Exploits1References3
Rows per page
Query Builder