Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:53 a.m.6 views

CVE-2022-33185

Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe string functions to process user input. Authenticated local attackers could abuse these vulnerabilities to exploit stack-based buffer overflows, allowing arbitrary code execution as the root user accoun...

7.8CVSS8AI score0.0006EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:36 p.m.3 views

CVE-2020-36564

Due to improper validation of caller input, validation is silently disabled if the provided expected token is malformed, causing any user supplied token to be considered valid...

7.5CVSS6.8AI score0.00308EPSS
Exploits0
NVD
NVDadded 2025/03/19 9:15 p.m.9 views

CVE-2025-27787

Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to denial of service DoS in restart.py. modelname in train.py takes user input, and passes it to the stoptrain function in restart.py, which uses it construct a path to a folder with config.json. That config.json is...

8.8CVSS0.00945EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/02/04 10:55 p.m.5 views

CVE-2024-26151

The mjml PyPI package, found at the FelixSchwarz/mjml-python GitHub repo, is an unofficial Python port of MJML, a markup language created by Mailjet. All users of FelixSchwarz/mjml-python who insert untrusted data into mjml templates unless that data is checked in a very strict manner. User input...

8.2CVSS8.2AI score0.01071EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/04/18 12:0 a.m.2 views

PT-2023-22784 · Archery · Archery

Name of the Vulnerable Software and Affected Versions: Archery affected versions not specified Description: The Archery project contains multiple SQL injection vulnerabilities that may allow an attacker to query connected databases. User input from the db name and tb name parameter values in the...

6.5CVSS6.9AI score0.0134EPSS
Exploits1References4
Exploit DB
Exploit DBadded 2005/05/30 12:0 a.m.16 views

Qualiteam X-Cart 4.0.8 - 'orders.php?mode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These vulnerabilities could permit remote attackers to pass malicious inpu...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2000/08/22 12:0 a.m.34 views

Darxite 0.4 - Login Buffer Overflow

// source: https://www.securityfocus.com/bid/1598/info Darxite 0.4 does not do proper bounds checking on user-supplied data during the login process, relying on sprintf to deliver the data into a 256 character buffer. Therefore, it is possible for an attacker to supply arbitrary code for executio...

7.4AI score
Exploits0
Rows per page
Query Builder