Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CVE
CVEadded 2026/02/06 5:43 p.m.14 views

CVE-2026-23632

CVE-2026-23632 (Gogs) : A bug in Gogs prior to 0.13.4 allows a token with read permission to modify repository contents via the PUT /repos/:owner/:repo/contents/* endpoint. After repoAssignment() passes, PutContents() calls UpdateRepoFile(), leading to commit creation and git push, enabling unaut...

6.5CVSS5.6AI score0.00021EPSS
Exploits0References1Affected Software1
Microsoft KB
Microsoft KBadded 2022/06/14 7:0 a.m.481 views

KB5014353 - Description of the security update for SQL Server 2019 CU16: June 14, 2022

KB5014353 - Description of the security update for SQL Server 2019 CU16: June 14, 2022 Summary How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Information about protection and security Summary An...

7.5CVSS8.1AI score0.02771EPSS
Exploits0
Snyk
Snykadded 2022/03/11 11:17 a.m.2 views

Command Injection

Overview libvcs is a vcs abstraction layer. Affected versions of this package are vulnerable to Command Injection via argument injection. When calling the updaterepo function when using hg, the url parameter is passed to the hg clone command. By injecting some hg options it was possible to get...

9.8CVSS7.5AI score0.0128EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 5:4 a.m.28 views

Security Bulletin: IBM Software Delivery and Lifecycle Patterns for the Open Source libuser Vunlerabilities (CVE-2015-3245 and CVE-2015-3246)

Summary IBM Software Delivery and Lifecycle Patterns requires client action for the Open Source libuser Vunlerabilities. The libuser library implements a standardized interface for manipulating and administering user and group accounts, and is installed by default on Linux distributions derived...

7.2CVSS0.7AI score0.19626EPSS
Exploits10Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/17 4:57 a.m.34 views

Security Bulletin: IBM Software Delivery and Lifecycle Patterns for the glibc vulnerabilities (CVE-2014-5119)

Summary IBM Software Delivery and Lifecycle Patterns requires client action for the glibc vulnerabilities. The GNU C Library glibc is vulnerable to a heap-based buffer overflow, a local attacker could exploit this vulnerability to overflow a buffer and execute arbitrary code on the system with ro...

7.5CVSS1.3AI score0.21511EPSS
Exploits4Affected Software1
PyPA
PyPAadded 2015/02/16 3:59 p.m.5 views

PYSEC-2015-33

RhodeCode before 2.2.7 allows remote authenticated users to obtain API keys and other sensitive information via the 1 updaterepo, 2 getlocks, or 3 getusergroups API method...

4CVSS6.6AI score0.00176EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder