Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

CNVD
CNVDadded 2021/12/17 12:0 a.m.10 views

Enalean Tuleap Injection Vulnerability

Enalean Tuleap is a set of open source software development and project management tools from the French company Enalean. The tool provides enterprise application lifecycle management, as well as project tracking, source code management, and team collaboration.Enalean Tuleap suffers from an...

7.2CVSS1.7AI score0.01398EPSS
Exploits0References1
Akamai Blog
Akamai Blogadded 2020/06/19 7:15 p.m.23 views

DNS as Code

Infrastructure as Code IaC and Continuous Delivery methods have become increasingly popular amongst development and operations teams as a means of maintaining high-performing websites. Code repositories, build servers, and configuration management systems are now industry standards, as these tool...

0.3AI score
Exploits0
CNVD
CNVDadded 2018/07/16 12:0 a.m.1 views

SRCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-17521)

SRCMS is a security emergency response and defect management software. A cross-site request forgery vulnerability exists in SRCMS version 2.3.1. An attacker can exploit this vulnerability by adding a user account via admin.php?m=Admin&c=member&a=add...

8.8CVSS8.8AI score0.00502EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2017/04/18 9:8 p.m.104 views

Internet Bug Bounty: Mercurial can be tricked into granting authorized users access to the Python debugger

I reported this bug privately to Mercurial and they produced an out of band release to fix the bug here: https://www.mercurial-scm.org/wiki/WhatsNewMercurial4.1.3.282017-4-18.29 I produced a very detailed proof of concept with a Metasploit exploit module, which can be seen publicly here:...

9CVSS8.6AI score0.21512EPSS
Exploits1
CNVD
CNVDadded 2015/02/12 12:0 a.m.1 views

Kallithea Information Disclosure Vulnerability

Kallithea is a free source code management system. Kallithea suffers from an information disclosure vulnerability that allows remote attackers to obtain sensitive information...

4CVSS6.5AI score0.01207EPSS
Exploits1References1
Fedora
Fedoraadded 2010/10/28 10:21 p.m.20 views

[SECURITY] Fedora 13 Update: cvs-1.11.23-10.fc13

CVS Concurrent Versions System is a version control system that can record the history of your files usually, but not always, source code. CVS only stores the differences between versions, instead of every version of every file you have ever created. CVS also keeps a log of who, when, and why...

6.9CVSS1.1AI score0.00392EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2003/01/20 9:19 p.m.24 views

Critical: Red Hat Security Advisory: cvs security update

Updated CVS packages are now available for Red Hat Linux Advanced Server. These updates fix a vulnerability which would permit arbitrary command execution on servers configured to allow anonymous read-only access. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 CVS is a...

7.5CVSS6.1AI score0.2387EPSS
Exploits1References3
Rows per page
Query Builder