Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/12/02 3:30 p.m.5 views

EUVD-2025-200231

Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. In the 'ShowMeterPasswords' function, there is an unlimited user input that is copied to a fixed-size buffer via 'sprintf'. The 'GetParametermeter' function retrieves the user input, which is directly incorporated...

8.5CVSS6.7AI score0.00328EPSS
Exploits0References2
CVE
CVEadded 2025/12/02 1:1 p.m.8 views

CVE-2025-11785

CVE-2025-11785 affects Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The vulnerability is a stack-based buffer overflow in ShowMeterPasswords() caused by unbounded input from the meter parameter via GetParameter(meter) being copied into a fixed-size buffer with sprintf(), without size validation. An att...

9.8CVSS6.8AI score0.00328EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2025/03/17 12:0 a.m.2 views

Expr 安全漏洞

Expr is an expression language and expression evaluation for Go open-sourced by Expr. A security vulnerability exists in versions of Expr prior to 1.17.0, which stems from an unlimited input size that could lead to memory exhaustion...

7.5CVSS5.8AI score0.00577EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/06/28 12:0 a.m.4 views

MediaWiki 安全漏洞

MediaWiki is a set of web-based wiki engines from the U.S. Wikimedia MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. MediaWiki version 1.38.1 and earlier versions have a denial of service vulnerability, which stems from the fac...

7.5CVSS5.6AI score0.01191EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2022/06/09 5:15 p.m.2 views

CVE-2022-29404

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody0 may cause a denial of service due to no default limit on possible input size...

7.5CVSS7.1AI score0.05678EPSS
Exploits0References9
OSV
OSVadded 2022/06/09 5:15 p.m.2 views

ALPINE-CVE-2022-29404

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody0 may cause a denial of service due to no default limit on possible input size...

7.5CVSS6.8AI score0.05678EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2021/05/04 7:34 p.m.2 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.04692EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2020/10/08 10:52 a.m.1 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.04692EPSS
Exploits0References5
Rows per page
Query Builder