Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

73 matches found

RedhatCVE
RedhatCVEadded 5 days ago7 views

CVE-2026-25559

OpenBullet2 through version 0.3.2 contains a path traversal vulnerability in the wordlist endpoint that allows authenticated attackers to perform arbitrary file read, write, and delete operations by supplying unsanitized absolute paths to the upload handler and wordlist functions. Attackers can...

8.8CVSS6.4AI score0.00265EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/16 12:0 a.m.5 views

Openfind MailGates和Openfind MailAudit 安全漏洞

Openfind MailGates and Openfind MailAudit are products of Openfind Information Technology Company in China. Openfind MailGates is an email security protection system. This system supports email filtering and APT attack defense functions. Openfind MailAudit is a software used for enterprise email...

8.7CVSS5.8AI score0.00032EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/03 12:0 a.m.5 views

Biztalk360 安全漏洞

Biztalk360 is an integrated operation and monitoring platform developed by the British company Biztalk360. Versions of Biztalk360 prior to 11.5 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of user input in the server read paths, which could allow...

6.8CVSS5.8AI score0.0011EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/19 2:24 p.m.2 views

CVE-2026-22557

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access files on the underlying system that could be manipulated to access an underlying account...

10CVSS5.7AI score0.00032EPSS
Exploits3References1
SUSE CVE
SUSE CVEadded 2026/02/14 12:23 a.m.4 views

SUSE CVE-2026-26158

A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead to...

7CVSS5.5AI score0.00007EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2026/01/29 12:0 a.m.3 views

PT-2026-5320

Improper link resolution in the VX800v v1.0 SFTP service allows authenticated adjacent attackers to use crafted symbolic links to access system files, resulting in high confidentiality impact and limited integrity risk...

6.9CVSS5.9AI score0.00011EPSS
Exploits0References3
CVE
CVEadded 2026/01/28 5:35 p.m.10 views

CVE-2020-36970

CVE-2020-36970 affects PMB 5.6, with a local file disclosure vulnerability in getgif.php triggered by unsanitized input of the chemin parameter. Attackers can read arbitrary system files (e.g., /etc/passwd) by crafting requests to getgif.php, leading to high impact on confidentiality. The provide...

8.4CVSS6AI score0.0001EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/01/19 8:36 a.m.2 views

CVE-2025-29847

A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using the JDBC engine and data source functionality, if the URL parameter configured on the frontend has undergone multiple rounds of URL encoding, it may bypass the system's checks. This bypass can trigg...

7.5CVSS5.5AI score0.00158EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2026/01/19 12:0 a.m.22 views

Apache Linkis security vulnerabilities

Apache Linkis is a middleware product developed by the Apache Foundation in the United States. It enables effective connections between upper-level applications and underlying data engines. Versions of Apache Linkis 1.7.0 and earlier contain security vulnerabilities. These vulnerabilities stem fr...

7.5CVSS5.8AI score0.00158EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/09 9:14 a.m.19 views

CVE-2022-33721

A vulnerability using PendingIntent in DeX for PC prior to SMR Aug-2022 Release 1 allows attackers to access files with system privilege...

5.5CVSS6.8AI score0.00071EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/11 12:0 a.m.4 views

PT-2025-50740

Name of the Vulnerable Software and Affected Versions dizqueTV version 1.5.3 Description dizqueTV version 1.5.3 contains a remote code execution issue. An attacker can inject arbitrary commands through the FFMPEG Executable Path settings due to improper input validation. This allows modification ...

9.3CVSS7.9AI score0.00518EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/11/17 12:0 a.m.2 views

vlife 路径遍历漏洞

vlife is a quasi-zero code platform for individual developers of programmer Chao wwwlike. A path traversal vulnerability exists in vlife 2.0.1 and earlier versions. The vulnerability stems from incorrect operation of the parameter fileName in the file...

6.9CVSS5.4AI score0.00058EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/10 6:30 a.m.2 views

EUVD-2025-33658

cross-zip is vulnerable to Directory Traversal through selective use of zip/unzip operations...

8.7CVSS6.4AI score
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-12042

Malware in sbrugna...

6.5CVSS6.9AI score0.00165EPSS
Exploits2References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-2280

Malware in sbrugna...

4.3CVSS4.9AI score0.00036EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2018-6809

Malware in sbrugna...

5.3CVSS5.5AI score0.00426EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-7070

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00199EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/09/15 12:0 a.m.4 views

PT-2025-37728

Name of the Vulnerable Software and Affected Versions wangxutech MoneyPrinterTurbo version 1.2.6 Description The software contains a path traversal flaw. An attacker can exploit this by using crafted '/api/v1/download/' URIs, such as '/api/v1/download//etc/passwd', to access sensitive files. The...

6.3CVSS6.5AI score0.00075EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2025/08/12 11:17 a.m.5 views

CVE-2025-40584

A vulnerability has been identified in SIMOTION SCOUT TIA V5.4 All versions, SIMOTION SCOUT TIA V5.5 All versions, SIMOTION SCOUT TIA V5.6 All versions V5.6 SP1 HF7, SIMOTION SCOUT TIA V5.7 All versions V5.7 SP1 HF1, SIMOTION SCOUT V5.4 All versions, SIMOTION SCOUT V5.5 All versions, SIMOTION SCO...

6.8CVSS6.7AI score0.00053EPSS
Exploits0References1
NVD
NVDadded 2025/07/29 5:15 a.m.4 views

CVE-2025-53078

Deserialization of Untrusted Data in Samsung DMSData Management Server allows attackers to execute arbitrary code via write file to system...

9.8CVSS0.01138EPSS
Exploits0References1
Rows per page
Query Builder