Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNVD
CNVDadded 2026/03/02 12:0 a.m.4 views

OpenClaw Data Forgery Issue Vulnerability

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw is vulnerable to a data forgery issue. The vulnerability stems from an unverified Telegram key token header and can be exploited by an attacker to process forged updates and perform unexpected actions...

7.5CVSS5.8AI score0.00031EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/06/06 12:0 a.m.1 views

i-PRO surveillance cameras 跨站请求伪造漏洞

i-PRO surveillance cameras are a series of cameras from the Japanese company i-PRO. A cross-site request forgery vulnerability exists in i-PRO surveillance cameras, which stems from vulnerability to cross-site request forgery attacks that could lead to the execution of unexpected actions...

5.1CVSS4.8AI score0.0009EPSS
Exploits0References2
CVE
CVEadded 2024/06/08 12:0 a.m.55 views

CVE-2024-37408

CVE-2024-37408 affects fprintd up to version 1.94.3, where the lack of a security attention mechanism could allow actions authorized by pam_fprintd.so for Sudo. Multiple connected sources (Red Hat, SUSE, Ubuntu, Debian trackers) confirm the issue; some vendors dispute it and suggest PAM configura...

7.3CVSS6.5AI score0.0005EPSS
Exploits0References8
OSV
OSVadded 2023/11/03 8:15 p.m.29 views

CVE-2022-3172

A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties...

8.2CVSS6.5AI score
Exploits0References3
Prion
Prionadded 2023/11/03 8:15 p.m.36 views

Design/Logic Flaw

A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties...

5.8CVSS8.1AI score0.03414EPSS
Exploits1References3Affected Software1
Veracode
Veracodeadded 2023/01/31 12:45 a.m.45 views

Open Redirect

openshift is vulnerable to Open Redirect. The vulnerability exists in the kube-apiserver, which allows an aggregated API server to redirect client traffic to any URL. This issue leads to the client performing unexpected actions and forwarding the client's API server credentials to third parties...

8.2CVSS3.2AI score0.03414EPSS
Exploits1References6Affected Software1
CNVD
CNVDadded 2022/04/19 12:0 a.m.15 views

WordPress MicroPayments plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress MicroPayments plugin is vulnerable to cross-site request forgery, which stems from the fact...

8.8CVSS1.7AI score0.00135EPSS
Exploits0References1
CNVD
CNVDadded 2021/07/26 12:0 a.m.16 views

EVlink City, EVlink Parking, EVlink Smart Wallbox code issue vulnerability

Schneider Electric EVlink City and others are a charging solution for electric vehicle charging stations from Schneider Electric France. EVlink City, EVlink Parking, and EVlink Smart Wallbox are vulnerable to a code issue that The vulnerability stems from the fact that when carefully crafted...

5.5CVSS2.4AI score0.00188EPSS
Exploits0Affected Software3
Rows per page
Query Builder