Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-30855

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00262EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:30 a.m.6 views

CVE-2023-27066

Directory Traversal vulnerability in Site Core Experience Platform 10.2 and earlier allows authenticated remote attackers to download arbitrary files via Urlhandle...

6.5CVSS7AI score0.00262EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/01/13 9:23 p.m.2 views

Malicious code in mlb-site-core (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9de998c89065e54ad576039f907182866e20268fdbabf834365503931267443d Any computer that has this package install...

7AI score
Exploits0References1
NVD
NVDadded 2023/05/22 5:15 p.m.7 views

CVE-2023-27066

Directory Traversal vulnerability in Site Core Experience Platform 10.2 and earlier allows authenticated remote attackers to download arbitrary files via Urlhandle...

6.5CVSS6.5AI score0.00262EPSS
Exploits1References2
Prion
Prionadded 2023/05/22 5:15 p.m.17 views

Directory traversal

Directory Traversal vulnerability in Site Core Experience Platform 10.2 and earlier allows authenticated remote attackers to download arbitrary files via Urlhandle...

4CVSS6.5AI score0.00262EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2023/05/22 12:0 a.m.54 views

CVE-2023-27066

CVE-2023-27066 affects Sitecore Experience Platform versions 10.2 and earlier. A directory traversal vulnerability allows authenticated remote attackers (low privileges) to download arbitrary files via Urlhandle. Base CVSS v3.1: 6.5 (MEDIUM); attack vector NETWORK, authentication required LOW, pa...

6.5CVSS6.4AI score0.00262EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2023/05/22 12:0 a.m.13 views

CVE-2023-27066

Directory Traversal vulnerability in Site Core Experience Platform 10.2 and earlier allows authenticated remote attackers to download arbitrary files via Urlhandle...

6.7AI score0.00262EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/05/22 12:0 a.m.7 views

CVE-2023-27066

Directory Traversal vulnerability in Site Core Experience Platform 10.2 and earlier allows authenticated remote attackers to download arbitrary files via Urlhandle...

6.5AI score0.00262EPSS
Exploits1References2
Snyk
Snykadded 2023/04/04 8:19 a.m.1 views

Malicious Package

Overview @miro-site/core is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package w...

9.8CVSS7.1AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/03/23 3:37 a.m.3 views

Malicious code in @miro-site/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bca77890c1dc9000f839accc01fdf6d95cbbbe1ee8d5bdf0caa651e3b2d8686d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder