Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Wireshark

An infinite loop in the BitTorrent DHT dissector in Wireshark versions 3.6.0, 3.4.0, and 3.4.10 allows for denial of service through packet injection or malicious capture files...

7.5CVSS7.1AI score0.03879EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/21 1:27 a.m.3 views

EUVD-2026-24041

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Versions 3.4.0 through 3.4.9 have a signed integer overflow vulnerability in OpenEXR's HTJ2K High-Throughput JPEG 2000 decompression path. The htundoimp...

5.3CVSS5.8AI score0.00302EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/08/21 12:0 a.m.2 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A security vulnerability exists in WeGIA versions prior to 3.4.10, which stems from an SQL injection in the idfuncionario parameter in the /html/funcionario/dependenteremover.php endpoint, which could lea...

9.4CVSS7.5AI score0.00393EPSS
Exploits1References3
OSV
OSVadded 2025/04/01 6:15 a.m.2 views

CVE-2025-31084

Deserialization of Untrusted Data vulnerability in sunshinephotocart Sunshine Photo Cart allows Object Injection. This issue affects Sunshine Photo Cart: from n/a through 3.4.10...

9.8CVSS7.3AI score0.00629EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/08/12 12:0 a.m.5 views

PT-2024-30347 · Unknown · Post Grid Master

Name of the Vulnerable Software and Affected Versions: Post Grid Master versions 3.4.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For Post Gr...

7.1CVSS6.4AI score0.00256EPSS
Exploits0References6
CNNVD
CNNVDadded 2022/06/13 12:0 a.m.5 views

WordPress plugin LaTeX 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

5.4CVSS5.6AI score0.00292EPSS
Exploits2References2
CNNVD
CNNVDadded 2021/12/30 12:0 a.m.2 views

Wireshark 缓冲区错误漏洞

Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Wireshark versions 3.6.0 and 3.4.0 - 3.4.10 contain an injection vulnerability that stems from a crash in the Sysdig event parser. An attacker could exploit this vulnerability to cause a denial of...

7.5CVSS8.2AI score0.03774EPSS
Exploits1References15
OSV
OSVadded 2020/08/06 11:15 p.m.3 views

UBUNTU-CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS7.1AI score0.01636EPSS
Exploits0References4
OSV
OSVadded 2016/09/21 2:25 p.m.2 views

DEBIAN-CVE-2016-5427

PowerDNS aka pdns Authoritative Server before 3.4.10 does not properly handle a . dot inside labels, which allows remote attackers to cause a denial of service backend CPU consumption via a crafted DNS query...

7.5CVSS7AI score0.62982EPSS
Exploits0References1
Rows per page
Query Builder