Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/05/28 8:13 a.m.10 views

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/27 7:33 a.m.10 views

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/27 7:33 a.m.7 views

CVE-2026-49001 Cross-Site Request Forgery (CSRF) vulnerability in ZTE ZXUniPOS NDS-LTE product

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References1
OSV
OSVadded 2025/11/12 10:25 p.m.2 views

MAL-2025-181885 Malicious code in avarag-obios-bidabiala (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d1cac3aeb7d648494fce274e8503e33bf4ceb79b43c590d53594dc08f4ea30c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/08/16 5:29 a.m.4 views

CVE-2024-7402

Netskope has identified a potential gap in its agent Netskope Client in which a malicious insider can potentially tamper the Netskope Client configuration by performing MITM Man-in-the-Middle activity on the Netskope Client communication channel. A successful exploitation would require...

7CVSS7.2AI score0.00095EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/06/13 12:0 a.m.1 views

Tenable Agent 安全漏洞

Tenable Agent is a vulnerability scanning program from Tenable USA. Tenable Agent has an elevation of privilege vulnerability, which originates from a non-administrative user deleting arbitrary local system files with SYSTEM privileges, and can be exploited by an attacker to tamper with the syste...

8.8CVSS7AI score0.00169EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/06/11 12:0 a.m.2 views

Mozilla VPN 安全漏洞

Mozilla VPN is an open source virtual private network web browser extension, desktop application and mobile application from the Mozilla Foundation. Mozilla VPN suffers from an elevation of privilege vulnerability that originates from an elevation of privilege, which can be exploited by an attack...

7.8CVSS7AI score0.0011EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/02/11 12:0 a.m.2 views

Microsoft Windows Remote Desktop Services 授权问题漏洞

Microsoft Windows Remote Desktop Services is a collection of features from Microsoft Corporation USA that allow users to remotely access graphical desktops and Windows applications. An authorization issue vulnerability exists in Microsoft Windows Remote Desktop Services. An attacker exploiting th...

6.8CVSS8.7AI score0.00991EPSS
Exploits0References1
Rows per page
Query Builder