Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 3:7 p.m.1 views

CVE-2026-4180

A vulnerability was identified in D-Link DIR-816 1.10CNB05. The impacted element is an unknown function of the file redirect.asp of the component goahead. The manipulation of the argument tokenid leads to improper access controls. The attack may be initiated remotely. The exploit is publicly...

9.8CVSS6.7AI score0.00032EPSS
Exploits1References1
Snyk
Snykadded 2026/03/11 12:16 a.m.1 views

Authorization Bypass Through User-Controlled Key

Overview @withstudiocms/auth-kit is an Utilities for managing authentication Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the DELETE /studiocmsapi/dashboard/api-tokens endpoint. An attacker can revoke API tokens belonging to other users,...

7.1CVSS5.9AI score0.00054EPSS
Exploits2References2
Circl
Circladded 2025/06/16 2:38 p.m.1 views

CVE-2025-3594

creationtimestamp| type| source ---|---|--- 2025-06-16 14:38:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18454...

9.8CVSS4.8AI score0.01593EPSS
Exploits0References1
Circl
Circladded 2024/10/19 5:9 p.m.0 views

CVE-2024-10139

creationtimestamp| type| source ---|---|--- 2024-10-19 17:09:56+00:00| seen| https://t.me/cvedetector/8363...

9.8CVSS6.2AI score0.00097EPSS
Exploits1References1
Circl
Circladded 2024/07/17 4:50 a.m.0 views

CVE-2024-6595

creationtimestamp| type| source ---|---|--- 2024-07-17 04:50:44+00:00| seen| https://t.me/cvedetector/1046...

5.3CVSS4.8AI score0.00071EPSS
Exploits1References1
CNVD
CNVDadded 2019/08/30 12:0 a.m.1 views

Cisco IOS XE Software License Issue Vulnerability

Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network devices. An authorization issue vulnerability exists in the Cisco REST API virtual service container in Cisco IOS XE Software. The vulnerability stems from a failure to perform proper checks in the code area th...

10CVSS7.3AI score0.15407EPSS
Exploits0References1
OSV
OSVadded 2019/08/28 7:15 p.m.1 views

CVE-2019-12643

A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass authentication on the managed Cisco IOS XE device. The vulnerability is due to an improper check performed by the area of code that manages the REST...

10CVSS7.4AI score0.15407EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2018/05/22 4:52 p.m.0 views

cxf: CXF's STSClient uses a flawed way of caching tokens that are associated with delegation tokens

It was found that the token cacher in Apache cxf uses a flawed way of caching tokens that are associated with the delegation token received from Security Token Service STS. This vulnerability could allow an attacker to craft a token which could return an identifier corresponding to a cached token...

7.5CVSS7.2AI score0.02386EPSS
Exploits0References5
Veracode
Veracodeadded 2017/06/09 2:1 a.m.13 views

Cross-Site Request Forgery (CSRF)

zendframework is vulnerable to cross-site request forgery CSRF. The library does not correctly identify null or mal-formed token identifiers, causing them to be falsely identified as valid tokens. This can allow a malicious user to use this as a vector for cross-site request forgery CSRF...

8.8CVSS8.5AI score0.00113EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder