Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/05/08 12:0 a.m.7 views

Uriparser 安全漏洞

UriParser is a C89-compatible library for parsing and processing URIs, strictly conforming to RFC 3986 standards. Versions of UriParser prior to 1.0.2 contained security vulnerabilities; these vulnerabilities stemmed from the EqualsUri function potentially incorrectly classifying two unequal URIs...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/05/06 8:52 p.m.6 views

CVE-2026-41417

Netty allows request-line validation to be bypassed when a DefaultHttpRequest or DefaultFullHttpRequest is created first and its URI is later changed via setUri. The constructors reject CRLF and whitespace characters that would break the start-line, but setUri does not apply the same validation...

5.3CVSS5.8AI score0.00307EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2026/04/02 7:21 p.m.3 views

CVE-2026-34931 hoppscotch: Improper loopback redirect_uri validation in device-login flow

hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, there is an open redirect vulnerability that leads to token exfiltration. With these tokens, the attacker can sign in as the victim to takeover their account. This issue has been patched in version 2026.3.0...

8.5CVSS5.8AI score0.00373EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/12/14 12:0 a.m.3 views

Red Hat Keycloak Input Validation Error Vulnerability

Red Hat Keycloak is a suite of software from Red Hat, Inc. that provides authentication and management capabilities for modern applications and services. A security vulnerability exists in Red Hat Keycloak, which stems from a flaw in the redirecturi authentication logic, which could allow a host ...

7.1CVSS6.8AI score0.0095EPSS
Exploits0References4
Prion
Prionadded 2021/04/01 3:15 p.m.33 views

Design/Logic Flaw

In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the default compliance mode allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF directory. For example a request to /context/%2e/WEB-INF/web.xml can retrieve the web.xml file. This ca...

5CVSS6AI score0.82371EPSS
Exploits7References25Affected Software10
CNVD
CNVDadded 2016/06/13 12:0 a.m.1 views

Mozilla Firefox Same-Origin Policy Bypass Vulnerability (CNVD-2016-04001)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 47.0, which stems from the creation of an invalid data: URI that allows the program to allow the location.host property to be...

6.5CVSS8.9AI score0.01699EPSS
Exploits0References1
Rows per page
Query Builder