Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2025/12/02 6:28 a.m.2 views

Command Injection

Overview caffeinated-whale-cli is an A CLI tool to help manage Frappe Docker instances. Affected versions of this package are vulnerable to Command Injection due to improper validation and sanitization of user-supplied site names and bench path inputs in the unlock command. The command constructs...

9.8CVSS7.9AI score
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-29827

Malware in sbrugna...

8.8CVSS8.6AI score0.00555EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 5:9 p.m.4 views

CVE-2020-8997

Older generation Abbott FreeStyle Libre sensors allow remote attackers within close proximity to enable write access to memory via a specific NFC unlock command. NOTE: The vulnerability is not present in the FreeStyle Libre 14-day in the U.S announced in August 2018 and FreeStyle Libre 2 outside...

8.8CVSS7AI score0.00555EPSS
Exploits0References1
Citrix
Citrixadded 2019/10/03 12:0 a.m.4 views

Unable to unlock iOS or iPadOS devices via Administration Console after upgrading to 13.1

Unable to unlock iPhone/iPad from Citrix Endpoint Management administration console after upgrading to iOS/iPadOS 13.1+. Note:No error message is displayed when command fails. The device ignores the command...

7.1AI score
Exploits0
NVD
NVDadded 2015/07/26 6:59 p.m.9 views

CVE-2015-2848

Cross-site request forgery CSRF vulnerability in Honeywell Tuxedo Touch before 5.2.19.0VA allows remote attackers to hijack the authentication of arbitrary users for requests associated with home-automation commands, as demonstrated by a door-unlock command...

6.8CVSS7.2AI score0.00108EPSS
Exploits0References1
Prion
Prionadded 2015/07/26 6:59 p.m.11 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Honeywell Tuxedo Touch before 5.2.19.0VA allows remote attackers to hijack the authentication of arbitrary users for requests associated with home-automation commands, as demonstrated by a door-unlock command...

6.8CVSS7.7AI score0.00108EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2015/07/26 6:0 p.m.22 views

CVE-2015-2848

Cross-site request forgery CSRF vulnerability in Honeywell Tuxedo Touch before 5.2.19.0VA allows remote attackers to hijack the authentication of arbitrary users for requests associated with home-automation commands, as demonstrated by a door-unlock command...

7.2AI score0.00108EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2009/11/26 12:0 a.m.36 views

Oracle 9i XDB FTP UNLOCK Overflow (win32)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Oracle 9i XD...

2.1CVSS0.2AI score0.85761EPSS
Exploits26
Rows per page
Query Builder