Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/05/27 4:32 a.m.5 views

CVE-2025-48382 Fess has Insecure Temporary File Permissions

Fess is a deployable Enterprise Search Server. Prior to version 14.19.2, the createTempFile method in org.codelibs.fess.helper.SystemHelper creates temporary files without explicitly setting restrictive permissions. This could lead to potential information disclosure, allowing unauthorized local...

5.1CVSS5.9AI score0.00126EPSS
Exploits0References4
NVD
NVDadded 2025/05/16 3:15 p.m.12 views

CVE-2025-47794

Nextcloud Server is a self hosted personal cloud system. In Nextcloud Server prior to 29.0.13, 30.0.7, and 31.0.1 and Nextcloud Enterprise Server prior to 26.0.13.13, 27.1.11.13, 28.0.14.4, 29.0.13, 30.0.7, and 31.0.1, an attacker on a multi-user system may read temporary files from Nextcloud...

4.3CVSS0.00409EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/05/16 12:0 a.m.3 views

PT-2025-21651 · Qt Company · Qt

Name of the Vulnerable Software and Affected Versions: Qt versions prior to 5.15.19 Qt versions 6.0.0 through 6.5.8 Qt versions 6.6.0 through 6.8.1 Description: The issue arises from the use of the GetTempPath API, which can be exploited by attackers to manipulate temporary file paths, potentiall...

7.3CVSS7.1AI score0.0017EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2024/12/16 12:0 a.m.12 views

Debian dla-3995 : libpostgresql-jdbc-java - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3995 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3995-1 [email protected]...

10CVSS7.4AI score0.0481EPSS
Exploits2References8
OSV
OSVadded 2022/03/23 10:44 p.m.6 views

USN-5345-1 thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, bypass security restrictions, obtain sensitive information, cause undefined...

9.6CVSS7AI score0.00931EPSS
Exploits5References14
OSV
OSVadded 2022/03/14 10:29 a.m.5 views

SUSE-SU-2022:0819-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.7.0 ESR bsc1196900: - CVE-2022-26383: Browser window spoof using fullscreen mode - CVE-2022-26384: iframe allow-scripts sandbox bypass - CVE-2022-26387: Time-of-check time-of-use bug when verifying add-...

9.6CVSS6.6AI score0.00931EPSS
Exploits4References7
Tenable Nessus
Tenable Nessusadded 2014/03/20 12:0 a.m.20 views

SuSE 11.3 Security Update : icedtea-web (SAT Patch Number 8974)

The OpenJDK Java Plugin IcedTea Web was released to fix a temporary file access problem. Changes : - Dialogs center on screen before becoming visible. - Support for u45 new manifest attributes Application-Name. - Custom applet permission policies panel in itweb-settings control panel. - Plugin...

2.1CVSS5.5AI score0.00482EPSS
Exploits1References3
Cvelist
Cvelistadded 2005/01/20 5:0 a.m.32 views

CVE-2005-0004

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files...

5.9AI score0.00594EPSS
Exploits0References10
Rows per page
Query Builder