Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1214 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 4:27 p.m.3 views

CVE-2020-18280

Cross Site Scripting vulnerability found in Phodal CMD v.1.0 allows a local attacker to execute arbitrary code via the EMBED SRC function...

6.1CVSS7AI score0.00341EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 1:30 p.m.5 views

CVE-2014-125075

A vulnerability was found in gmail-servlet and classified as critical. This issue affects the function search of the file src/Model.java. The manipulation leads to sql injection. The identifier of the patch is 5d72753c2e95bb373aa86824939397dc25f679ea. It is recommended to apply a patch to fix thi...

9.8CVSS7.6AI score0.00291EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/21 7:50 p.m.6 views

CVE-2005-3015

Cross-site scripting XSS vulnerability in IBM Lotus Domino 6.5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 BaseTarget or 2 Src parameters...

4.3CVSS5.8AI score0.00353EPSS
Exploits1References1
Debian CVE
Debian CVEadded 2025/05/09 6:41 a.m.3 views

CVE-2025-37846

In the Linux kernel, the following vulnerability has been resolved: arm64: mops: Do not dereference src reg for a set operation The source register is not used for SET and reading it can result in a UBSAN out-of-bounds array access error, specifically when the MOPS exception is taken from a SET...

7.1CVSS5.7AI score0.00067EPSS
Exploits0
OSV
OSVadded 2025/04/18 1:49 p.m.1 views

OESA-2025-1428 augeas security update

Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Security Fixes: A vulnerability has been found in Hercules Augeas...

4.8CVSS6.1AI score0.0003EPSS
Exploits1References2
OSV
OSVadded 2025/03/26 10:15 a.m.2 views

CVE-2025-1439

The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advancediframe' shortcode in all versions up to, and including, 2024.5 due to insufficient input sanitization and output escaping on user supplied attributes through the 'src' attribute when th...

5.4CVSS7.4AI score
Exploits0References2
CNNVD
CNNVDadded 2025/03/25 12:0 a.m.1 views

Open Asset Import Library(assimp) 缓冲区错误漏洞

Open Asset Import Library assimp is a library in the Open Asset Import Library open source. A buffer error vulnerability exists in Open Asset Import Library assimp version 5.4.3, which stems from the fact that incorrect manipulation of the parameter src.entries can lead to out-of-bounds reads...

8.8CVSS6.4AI score0.00097EPSS
Exploits1References7
SUSE Linux
SUSE Linuxadded 2025/03/21 12:54 p.m.0 views

Security update for zvbi

This update for zvbi fixes the following issues: CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. CVE-2025-2174: Fixed integer overflow leading to heap overflow in src/conv.c, src/io-sim.c, src/search.c bsc1239299. CVE-2025-2175: Fixed integer overflow in...

7.3CVSS6.5AI score0.00277EPSS
Exploits0References20
OSV
OSVadded 2025/03/21 12:15 p.m.1 views

UBUNTU-CVE-2025-2588

A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function recaseexpand of the file src/fa.c. The manipulation of the argument re leads to null pointer dereference. Attacking locally is a requirement. The exploit has been...

4.8CVSS4.9AI score0.0003EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/03/21 12:19 a.m.8 views

CVE-2025-29118

Tenda AC8 V16.03.34.06 was discovered to contain a stack overflow via the src parameter in the function sub47D878...

6.5CVSS7.9AI score0.00221EPSS
Exploits1References1
OSV
OSVadded 2025/03/19 5:15 p.m.1 views

CVE-2025-29118

Tenda AC8 V16.03.34.06 was discovered to contain a stack overflow via the src parameter in the function sub47D878...

6.5CVSS5.9AI score
Exploits0References1
NVD
NVDadded 2025/03/19 5:15 p.m.5 views

CVE-2025-29118

Tenda AC8 V16.03.34.06 was discovered to contain a stack overflow via the src parameter in the function sub47D878...

6.5CVSS0.00221EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/03/19 12:0 a.m.3 views

CVE-2025-29118

Tenda AC8 V16.03.34.06 was discovered to contain a stack overflow via the src parameter in the function sub47D878...

7.6AI score0.00221EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/03/19 12:0 a.m.9 views

CVE-2025-29118

Tenda AC8 V16.03.34.06 was discovered to contain a stack overflow via the src parameter in the function sub47D878...

0.00221EPSS
Exploits1References1
CVE
CVEadded 2025/03/19 12:0 a.m.56 views

CVE-2025-29118

CVE-2025-29118 affects the Tenda AC8 router with firmware version V16.03.34.06. A stack overflow is triggered by the src parameter in the function sub_47D878, leading to denial of service (availability impact described as HIGH). CVSS information indicates a medium base score (6.5) with adjacent a...

6.5CVSS7.6AI score0.00221EPSS
Exploits1References1Affected Software1
SUSE CVE
SUSE CVEadded 2025/03/17 2:17 p.m.1 views

SUSE CVE-2025-2338

A vulnerability, which was classified as critical, was found in tbeu matio 1.5.28. Affected is the function strdupvprintf of the file src/io.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may ...

8.1CVSS6.5AI score0.0008EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/03/16 12:0 a.m.2 views

PT-2025-11386

Name of the Vulnerable Software and Affected Versions tbeu matio version 1.5.28 Description A critical vulnerability has been found in tbeu matio, affecting the function Mat VarPrint of the file src/mat.c. The manipulation leads to a heap-based buffer overflow. The attack may be initiated remotel...

8.1CVSS6.5AI score0.00102EPSS
Exploits1References21
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/14 1:23 a.m.2 views

Malicious code in digits-electron-src (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4cbfd2aa51f6d4ff7a9bc75c482e5fde9d3f100b1f911d8f55dbc642696897aa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
CNVD
CNVDadded 2025/03/10 12:0 a.m.4 views

Tenda AC15 Buffer Overflow Vulnerability (CNVD-2025-09165)

The Tenda AC15 is a wireless router from the Chinese company Tenda. The Tenda AC15 suffers from a buffer overflow vulnerability that stems from improper handling of the parameter src, no details of the vulnerability are provided at this time...

6.5CVSS7.2AI score0.00302EPSS
Exploits1References1
OSV
OSVadded 2025/03/05 9:15 p.m.2 views

CVE-2025-25634

A vulnerability has been found in Tenda AC15 15.03.05.19 in the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src leads to stack-based buffer overflow...

6.5CVSS6.2AI score0.00302EPSS
Exploits1References1
Rows per page
Query Builder