Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedHat Linux
RedHat Linuxadded 2026/02/23 7:19 p.m.5 views

httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo

A permissions bypass flaw has been discovered in the apache HTTP server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid...

5.4CVSS5.7AI score0.00569EPSS
Exploits0References6
Veracode
Veracodeadded 2026/02/05 5:48 a.m.6 views

Authentication Bypass

Apache HTTP Server is vulnerable to Authentication Bypass. The vulnerability is due to improper handling of the RequestHeader directive via AllowOverride FileInfo in .htaccess, which allows an attacker to cause CGI scripts to execute under an unexpected user ID...

5.4CVSS7.3AI score0.00569EPSS
Exploits0References3Affected Software2
CNVD
CNVDadded 2025/12/10 12:0 a.m.85 views

Apache HTTP Server Code Execution Vulnerability (CNVD-2025-30835)

Apache HTTP Server is the United States Apache Apache Foundation of an open source web server . The server is fast, reliable and can be expanded through a simple API. A code execution vulnerability exists in Apache HTTP Server versions 2.4.7 through 2.4.65, which can be exploited by an attacker t...

5.4CVSS7.6AI score0.00569EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2025/12/05 11:2 a.m.5 views

CVE-2025-66200

moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65. Users are...

5.4CVSS7AI score0.00569EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/02/11 5:24 p.m.4 views

CVE-2019-15002

An exploitable CSRF vulnerability exists in Atlassian Jira, from versions 7.6.4 to 8.1.0. The login form doesn’t require a CSRF token. As a result, an attacker can log a user into the system under an unexpected account...

4.6AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2020/06/09 1:24 p.m.28 views

CVE-2020-13776

A flaw was found in systemd, where it mishandles numerical usernames beginning with decimal digits, or "0x" followed by hexadecimal digits. When the usernames are used by systemd, for example in service units, an unexpected user may be used instead. In some particular configurations, this flaw...

6.2CVSS1.9AI score0.00464EPSS
Exploits0References3
myhack58
myhack58added 2014/03/08 12:0 a.m.12 views

Vulnerability of small summary: the browser in those strange logic-vulnerability warning-the black bar safety net

0x00 introduction As early as a few years ago to see a book the dig 0day act, which introduced a sogou browser vulnerabilities-the forge website, although after a lapse of four years, sogou still made the same mistake, but at that time I only know that there is this treatment, but suffer from on...

7.4AI score
Exploits0
Rows per page
Query Builder