Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

ATTACKERKB
ATTACKERKBadded 2026/04/13 10:39 a.m.1 views

CVE-2026-2728

LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page...

4.6CVSS5.8AI score0.00225EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/03/11 7:15 p.m.2 views

CVE-2026-31900

Black is the uncompromising Python code formatter. Black provides a GitHub action for formatting code. This action supports an option, usepyproject: true, for reading the version of Black to use from the repository pyproject.toml. A malicious pull request could edit pyproject.toml to use a direct...

8.7CVSS6.3AI score0.0046EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2025/08/06 12:0 a.m.1 views

IBM Tivoli Monitoring 安全漏洞

IBM Tivoli Monitoring is a suite of system monitoring software from International Business Machines IBM. The software supports detection of system bottlenecks and potential problems, performance monitoring of essential system resources, automatic recovery from critical situations, and more. A...

9.8CVSS6.8AI score0.00453EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:55 a.m.4 views

CVE-2024-28862

The Ruby One Time Password library ROTP is an open source library for generating and validating one time passwords. Affected versions had overly permissive default permissions. Users should patch to version 6.3.0. Users unable to patch may correct file permissions after installation...

5.3CVSS6.8AI score0.00176EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/11/20 12:0 a.m.1 views

DedeBIZ 安全漏洞

DedeBIZ is a content management system from China Muyun Intelligence DedeBIZ company. A security vulnerability exists in DedeBIZ version v6.3.0, which stems from the presence of an arbitrary file upload vulnerability that allows an attacker to execute arbitrary code by uploading a carefully craft...

9.8CVSS7.7AI score0.00791EPSS
Exploits1References2
OSV
OSVadded 2023/12/05 12:25 a.m.2 views

CVE-2023-48697 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to memory buffer and pointer vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...

6.4CVSS8.4AI score0.01185EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/12/05 12:0 a.m.3 views

Azure RTOS NetX Duo Security Vulnerability

Azure RTOS NetX Duo is an advanced, industry-grade TCP/IP networking stack open-sourced by Azure RTOS. A security vulnerability exists in Azure RTOS NetX Duo versions prior to 6.3.0 that stems from the presence of a memory overflow vulnerability, which could be exploited by an attacker to cause...

9.8CVSS9.5AI score0.03899EPSS
Exploits0References1
Snyk
Snykadded 2021/05/05 7:4 a.m.2 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection. It used to call Kernelopen to open a local file. If a Ruby project hasa file whose name starts with | and ends with tags, the command followingthe pipe character is executed. A malicious Ruby project could exploit it...

8.1CVSS7AI score0.0148EPSS
Exploits0References2
Rows per page
Query Builder