Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/05/09 8:59 p.m.70 views

CVE-2025-47269

Summary: The code-server CVE-2025-47269 vulnerability affects versions before 4.99.4, where a maliciously crafted URL using the built-in proxy /proxy subpath can cause the proxy to forward to an attacker-controlled domain, potentially exposing a user’s session token and enabling session hijacking...

8.3CVSS6.9AI score0.00331EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2022/07/29 12:0 a.m.35 views

EulerOS Virtualization 2.9.0 : nss (EulerOS-SA-2022-2203)

According to the versions of the nss packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Improper refcounting of soft token session objects could cause a use-after-free and crash likely limited to a denial of service. Thi...

8.8CVSS7.9AI score0.00406EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2022/06/15 12:0 a.m.42 views

EulerOS 2.0 SP9 : nss (EulerOS-SA-2022-1871)

According to the versions of the nss packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Improper refcounting of soft token session objects could cause a use-after-free and crash likely limited to a denial of service. This vulnerability...

8.8CVSS8AI score0.00406EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2020/12/04 12:0 a.m.903 views

VestaCP 0.9.8-26 Token Session

Document Title: =============== VestaCP v0.9.8-26 - LoginAs Token Session Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2240 Release Date: ============= 2020-11-26 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2020/11/26 12:0 a.m.34 views

VestaCP v0.9.8-26 - (LoginAs) Token Session Vulnerability

Document Title: =============== VestaCP v0.9.8-26 - LoginAs Token Session Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2240 Release Date: ============= 2020-11-26 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score
Exploits0
OSV
OSVadded 2019/12/04 12:0 a.m.0 views

UBUNTU-CVE-2019-11756

Improper refcounting of soft token session objects could cause a use-after-free and crash likely limited to a denial of service. This vulnerability affects Firefox 71...

8.8CVSS7.1AI score0.00406EPSS
Exploits0References5
OSV
OSVadded 2019/04/30 3:37 p.m.35 views

GHSA-GC52-XJ6P-9PXP Exposure of Sensitive Information to an Unauthorized Actor in Keycloak

Keycloak up to version 6.0.0 allows the end user token access or id token JWT to be used as the session cookie for browser sessions for OIDC. As a result an attacker with access to service provider backend could hijack user?s browser session...

3.8CVSS4.2AI score0.00275EPSS
Exploits0References5
Vulnerability Lab
Vulnerability Labadded 2012/04/24 12:0 a.m.35 views

Microsoft MSN Hotmail - Password Reset Vulnerability

Document Title: =============== Microsoft MSN Hotmail - Password Reset Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=529 Media Partners:...

7.4AI score
Exploits0
Rows per page
Query Builder