Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Github Security Blog
Github Security Blogadded 2026/03/18 8:19 p.m.14 views

Unsigned SAML LogoutRequest Acceptance in gosaml2

Summary The ValidateEncodedLogoutRequestPOST function in gosaml2 accepts completely unsigned SAML LogoutRequest messages even when SkipSignatureValidation is set to false. When validateElementSignature returns dsig.ErrMissingSignature, the code in decodelogoutrequest.go:60-62 silently falls throu...

5.9AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-1000076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier,...

9.8CVSS7AI score0.03037EPSS
Exploits0References3
OSV
OSVadded 2024/11/04 10:15 p.m.2 views

AZL-52195 CVE-2024-51744 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.7-1

golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by...

3.1CVSS6.5AI score0.00521EPSS
Exploits0References1
CNVD
CNVDadded 2020/09/14 12:0 a.m.2 views

Facebook Hermes Integer Signature Error Vulnerability

Facebook Hermes is a JavaScript VM for mobile , it compiles JavaScript into byte code , you can immediately program and execute . An integer signature error vulnerability exists in the JavaScript interpreter in Facebook Hermes, which can be exploited by a remote attacker to cause a denial of...

8.1CVSS7.6AI score0.01202EPSS
Exploits0References1
Citrix
Citrixadded 2020/05/29 12:0 a.m.14 views

Symantec Endpoint Protection 14.2.5569 installation failure error, " symcorpuires.dll could not be found."

Facing issues while installing Symantec Endpoint Protection client 14.x while installing on App Layer.When trying to install 14.2.5569 version of SEP , it’s getting crashed. and post a reboot of the packaging machine, unable to search in icons or search box . Getting an error that says...

7AI score
Exploits0
Citrix
Citrixadded 2017/12/28 12:0 a.m.8 views

On servers after installing the hotfix XA650R07W2K8R2X64017 the IMA service won't start.

On several servers after installing the hotfix XA650R07W2K8R2X64017 the IMA service won't start anymore although no error was returned during Hotfix installation. In the IMA Runtime registry, the Currently Loading Plugin will have MfSrvss.dll. Moreover, when checking the Certificate settings for...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2013/02/04 12:0 a.m.12 views

Mobile Signature Error

Binary data mdmsigerror.nbin...

7.3AI score
Exploits0
Rows per page
Query Builder