Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2019-4503

Malware in sbrugna...

8.8CVSS8.5AI score0.00938EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/23 7:45 a.m.6 views

CVE-2024-28141

The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users into performing actions on the application when they visit an attacker-controlled website or click on a malicious link. E.g. an attacker can forge malicious links to reset the...

6.3CVSS7AI score0.00347EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:13 a.m.8 views

CVE-2024-25149

Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions does not properly restrict membership of a child site when the "Limit membership to members of the parent site" option is enabled,...

5.4CVSS6.4AI score0.00333EPSS
Exploits0References1
CVE
CVEadded 2025/03/20 10:11 a.m.46 views

CVE-2024-7767

CVE-2024-7767 affects danswer-ai/danswer v0.3.94. The root cause is improper access control, enabling the first user created in the system to view, modify, and delete chats created by an Admin. Reported impact includes unauthorized access to sensitive information and potential data integrity issu...

8.1CVSS6.4AI score0.00555EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/01/27 4:3 p.m.10 views

CVE-2024-22316 IBM Sterling File Gateway improper access control

IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to perform unauthorized actions to another user's data due to improper access controls...

4.3CVSS4.5AI score0.00229EPSS
Exploits0References1
NVD
NVDadded 2017/04/05 6:59 p.m.16 views

CVE-2017-1180

The IBM TRIRIGA Document Manager contains a vulnerability that could allow an authenticated user to execute actions they did not have access to. IBM Reference : 2001084...

5.3CVSS5.3AI score0.00723EPSS
Exploits0References3
exploitpack
exploitpackadded 2015/05/18 12:0 a.m.15 views

ManageEngine EventLog Analyzer 10.0 Build 10001 - Cross-Site Request Forgery

ManageEngine EventLog Analyzer 10.0 Build 10001 - Cross-Site Request Forgery input type="hidden"...

Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.13 views

dalbum 144 build 174 and earlier CSRF Vulnerabilities

No description provided by source. dalbum 144 build 174 and earlier CSRF Vulnerabilities =================================================================================== Exploit Title:dalbum 144174 and earlier CSRF Vulnerabilities Vendor: http://www.dalbum.org/ Download link...

7.1AI score
Exploits0
myhack58
myhack58added 2012/02/13 12:0 a.m.61 views

Tencent microblogging XSS attack vulnerability-vulnerability warning-the black bar safety net

from: author:Kingthy's I believe we all know Sina Weibo in 6 on 2 8 may occurXSSattack event? That night, a large number of Sina Weibo users to automatically send tweets and automatically focus on one called“hellosamy“of the user. What exactlyXSSattacks why can have so much power for? Now many...

7.1AI score
Exploits0
Rows per page
Query Builder