Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CVE
CVEadded 2026/05/29 6:28 p.m.21 views

CVE-2026-4387

StrongDM Desktop Application prior to 23.74.0 (Desktop Client before 53.77.0) stores authentication state in cleartext in a per-user file C:\Users.sdm\state.kv, exposing a JSON Web Token and asymmetric key material. Access requires local read to the user profile and additional deployment/executio...

2CVSS5.9AI score0.00007EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : mutt-2.0.7-1.el8 (AXSA:2021-2863:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2863:01 advisory. mutt: Incorrect handling of invalid initial IMAP responses could lead to an authentication attempt over unencrypted connection CVE-2020-28896 mutt:...

6.5CVSS5.7AI score0.02801EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-0608

Malware in sbrugna...

8.1CVSS7.8AI score0.00107EPSS
Exploits1References6
CNNVD
CNNVDadded 2024/10/03 12:0 a.m.1 views

DrayTek Vigor 3910 安全漏洞

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A security vulnerability exists in the DrayTek Vigor 3910 version 4.3.2.6 and prior versions, which originates from unencrypted HTTP for authentication requests...

8.8CVSS7AI score0.00067EPSS
Exploits0References3
OpenVAS
OpenVASadded 2020/09/29 12:0 a.m.1288 views

The rexec service is running

This remote host is running a rexec service. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.00483EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2019/07/30 9:15 p.m.24 views

CVE-2019-5448

Yarn before 1.17.3 is vulnerable to Missing Encryption of Sensitive Data due to HTTP URLs in lockfile causing unencrypted authentication data to be sent over the network...

8.1CVSS7.1AI score0.00107EPSS
Exploits1References5
CVE
CVEadded 2019/07/30 8:15 p.m.78 views

CVE-2019-5448

CVE-2019-5448 affects Yarn; the vulnerability arises from HTTP URLs in a Yarn lockfile that can cause unencrypted authentication data to be transmitted. The connected advisories confirm Photon OS and Nessus plugins flag Yarn as affected and advise updating the Yarn package to mitigate. The exact ...

8.1CVSS7.8AI score0.00107EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2011/05/19 12:0 a.m.1608 views

SMTP Service Cleartext Login Permitted

The remote host is running an SMTP server that advertises that it allows cleartext logins over unencrypted connections. An attacker may be able to uncover user names and passwords by sniffing traffic to the server if a less secure authentication mechanism i.e. LOGIN or PLAIN is used. C Tenable...

5.6AI score
Exploits0References2
exploitpack
exploitpackadded 2004/08/23 12:0 a.m.9 views

Compulsive Media CNU5 - News.mdb Database Disclosure

Compulsive Media CNU5 - News.mdb Database Disclosure source: https://www.securityfocus.com/bid/11004/info CNU5 is reported prone to a database disclosure vulnerability. It is reported that remote users may download the database file 'news.mdb' and gain access to sensitive information including...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/07/19 12:0 a.m.22 views

Zixforum - ZixForum.mdb Database Disclosure

source: https://www.securityfocus.com/bid/10982/info Zixforum is reported prone to a database disclosure vulnerability. It is reported that remote users may download the database file ''ZixForum.mdb' and gain access to sensitive information including unencrypted authentication credentials. All...

7.4AI score
Exploits0
Rows per page
Query Builder