Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-25764

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00234EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/09/27 12:0 a.m.3 views

PT-2025-39718

Name of the Vulnerable Software and Affected Versions Professional Contact Form plugin for WordPress versions prior to 1.0.1 Description The Professional Contact Form plugin for WordPress is susceptible to Cross-Site Request Forgery. This is caused by a lack of proper nonce validation within the...

4.3CVSS6.2AI score0.00124EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2025/08/25 11:32 p.m.0 views

CVE-2025-9429 mtons mblog Post submit cross site scripting

A security vulnerability has been detected in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation of the argument content/title/ leads to cross site scripting. It is possible to initiate the attack remotely. The...

5.1CVSS3.8AI score0.00234EPSS
Exploits1References6
BDU FSTEC
BDU FSTECadded 2024/03/06 12:0 a.m.4 views

The vulnerability of the spark-submit function in the Apache Spark framework, which allows a hacker to execute arbitrary code.

The vulnerability of the spark-submit function in the Apache Spark framework is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

9.9CVSS8.1AI score0.01109EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTECadded 2021/03/11 12:0 a.m.2 views

The vulnerabilities of the “/submit.php” and “/infusions/downloads/downloads.php” components of the PHP-Fusion CMS system allow attackers to execute arbitrary SQL queries.

The vulnerability of the “/submit.php” and “/infusions/downloads/downloads.php” components of the PHP-Fusion CMS system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries remotely...

9CVSS8AI score0.01699EPSS
Exploits1References8Affected Software1
BDU FSTEC
BDU FSTECadded 2019/08/20 12:0 a.m.2 views

The vulnerability of the onSubmit() method of the Horde_Form_Type_image class (Horde/Form/Type.php) in the php-horde-form functionality allows a attacker to compromise data integrity, gain access to confidential data, and cause service interruptions.

The vulnerability of the onSubmit method in the HordeFormTypeimage class Horde/Form/Type.php of the php-horde-form functionality package is related to incorrect elimination of special characters in the POST parameter. This can lead to incorrect restrictions on the path to a restricted directory...

8.8CVSS5.5AI score0.19165EPSS
Exploits3References5Affected Software2
OSV
OSVadded 2018/05/26 9:29 p.m.3 views

CVE-2018-11501

PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via usersubmit.php?upd=2, with resultant XSS...

8.8CVSS5.8AI score0.00634EPSS
Exploits1References2
Rows per page
Query Builder