Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2026/03/23 3:16 p.m.1 views

CVE-2026-4590

A security flaw has been discovered in kalcaddle kodbox 1.64. The impacted element is an unknown function of the file /workspace/source-code/plugins/oauth/controller/bind/index.class.php of the component loginSubmit API. Performing a manipulation of the argument third results in cross-site reques...

3.1CVSS0.0002EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/03/23 2:24 p.m.24 views

CVE-2026-4590 kalcaddle kodbox loginSubmit API index.class.php cross-site request forgery

A security flaw has been discovered in kalcaddle kodbox 1.64. The impacted element is an unknown function of the file /workspace/source-code/plugins/oauth/controller/bind/index.class.php of the component loginSubmit API. Performing a manipulation of the argument third results in cross-site reques...

3.1CVSS0.0002EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 6:15 a.m.2 views

SUSE CVE-2006-3011

The errorlog function in basicfunctions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local users to bypass safe mode and openbasedir restrictions via a "php://" or other scheme in the third argument, which disables safe mode...

4.6CVSS6.7AI score0.00438EPSS
Exploits2References4
SUSE CVE
SUSE CVEadded 2023/02/15 6:13 a.m.2 views

SUSE CVE-2006-6799

SQL injection vulnerability in Cacti 0.8.6i and earlier, when registerargcargv is enabled, allows remote attackers to execute arbitrary SQL commands via the 1 second or 2 third arguments to cmd.php. NOTE: this issue can be leveraged to execute arbitrary commands since the SQL query results are...

7.5CVSS10AI score0.02899EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 6:12 a.m.4 views

SUSE CVE-2007-1413

Buffer overflow in the snmpget function in the snmp extension in PHP 5.2.3 and earlier, including PHP 4.4.6 and probably other PHP 4 versions, allows context-dependent attackers to execute arbitrary code via a long value in the third argument object id...

7.5CVSS8.2AI score0.15593EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2020/02/12 2:15 a.m.25 views

CVE-2014-6262

Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core before 4.2.5 and other products, allow remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted third argument to the rrdtool.graph function, aka ZEN-15415...

7.5CVSS7.4AI score0.19687EPSS
Exploits0References4
NVD
NVDadded 2004/09/01 4:0 a.m.18 views

CVE-2004-1372

Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via 1 a long third argument to the rec2xml function or 2 a long filename argument to the generatedistfile procedure...

7.2CVSS7.3AI score0.00051EPSS
Exploits0References7
Rows per page
Query Builder