Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

CVE
CVEadded 2026/02/20 3:5 a.m.74 views

CVE-2026-26996

CVE-2026-26996 affects minimatch, a glob-to-RegExp utility. Versions 10.2.0 and earlier are vulnerable to a Regular Expression Denial of Service (ReDoS) when a glob pattern contains many consecutive * wildcards followed by a literal not present in the test string. Each * creates a separate [^/]*?...

8.7CVSS5.4AI score0.00026EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/22 8:6 p.m.2 views

CVE-2021-3769

Vulnerability in pygmalion, pygmalion-virtualenv and refined themes Description: these themes use print -P on user-supplied strings to print them to the terminal. All of them do that on git information, particularly the branch name, so if the branch has a specially-crafted name the vulnerability...

10CVSS6.8AI score0.00329EPSS
Exploits0References1
Veracode
Veracodeadded 2024/04/08 6:14 a.m.14 views

SQL Injection

Centreon is vulnerable to SQL Injection. The vulnerability is due to improper validation of user-supplied strings before using them to construct SQL queries, specifically within the updateDirectory function. An attacker can leverage this vulnerability to execute code in the context of the service...

8.8CVSS7.5AI score0.78712EPSS
Exploits0References4Affected Software1
Veracode
Veracodeadded 2024/04/08 6:13 a.m.16 views

SQL Injection

Centreon is vulnerable to SQL Injection. The vulnerability is due to improper validation of user-supplied strings before using them to construct SQL queries, specifically within the updateLCARelation function. An attacker can leverage this vulnerability to execute code in the context of the servi...

7.2CVSS7.5AI score0.86031EPSS
Exploits0References4Affected Software1
Veracode
Veracodeadded 2024/04/08 6:8 a.m.9 views

SQL Injection

Centreon is vulnerable to SQL Injection. The vulnerability is due to improper validation of user-supplied strings before using them to construct SQL queries, specifically within the updateContactServiceCommands function. An attacker can leverage this vulnerability to execute code in the context o...

7.2CVSS7.5AI score0.87385EPSS
Exploits0References4Affected Software1
Veracode
Veracodeadded 2024/04/08 6:6 a.m.13 views

SQL Injection

centreon is vulnerable to SQL Injection. The vulnerability is due to improper sanitization of user-supplied strings before using them to construct SQL queries, specifically within the updateGroups function. An attacker can leverage this vulnerability to execute code in the context of the service...

7.2CVSS7.5AI score0.786EPSS
Exploits0References4Affected Software1
NVD
NVDadded 2023/03/29 7:15 p.m.17 views

CVE-2022-42426

This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of requests to modify poller broker configuration. The issue results from the lack of...

8.8CVSS8.1AI score0.58996EPSS
Exploits0References1
OSV
OSVadded 2021/11/30 10:15 a.m.13 views

CVE-2021-3769

Vulnerability in pygmalion, pygmalion-virtualenv and refined themes Description: these themes use print -P on user-supplied strings to print them to the terminal. All of them do that on git information, particularly the branch name, so if the branch has a specially-crafted name the vulnerability...

9.8CVSS6.7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/04/08 12:0 a.m.17 views

Advantech WebAccess/NMS MibBrowser SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech WebAccess/NMS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of calls to the handleDeviceNameByIpAddress method of the...

7.5CVSS2.8AI score0.00282EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2017/12/15 12:0 a.m.29 views

Quest NetVault Backup Server Process Manager Service NVBUBackup ClientList Method SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUBackup ClientList method requests. The issue results from th...

7.5CVSS1.3AI score0.14875EPSS
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2017/09/22 12:0 a.m.33 views

Trend Micro Control Manager CCGIServlet HighRiskDetectionResult SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within processing of...

6CVSS8AI score
Exploits0References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.10 views

XLReader 0.9 - Remote Client-Side Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11970/info A remote, client-side buffer overflow vulnerability affects xlreader. This issue is due to a failure of the application to properly validate the length of user-supplied strings prior to copying them into static...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.13 views

ImageMagick 6.x PNM Image Decoding Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13351/info A remotely exploitable client-side buffer-overflow vulnerability affects ImageMagick. This issue occurs because the application fails to properly validate the length of user-supplied strings before copying them...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.12 views

MPG123 0.59 Find Next File Remote Client-Side Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11958/info A remote client-side buffer overflow vulnerability affects mpg123. This issue is due to a failure of the application to properly validate the length of user-supplied strings prior to copying them into static...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.15 views

VyPRESS Messenger 3.5 - Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11310/info VyPRESS Messenger is affected by a remote buffer overflow vulnerability. This issue is due to a failure of the application to verify the length of user-supplied strings prior to copying them into finite process...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

SquirrelMail 1.2.x From Email Header HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10450/info SquirrelMail is reported to be prone to a 'from' field email header HTML injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied email header strings. An...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2005/04/25 12:0 a.m.10 views

ImageMagick 6.x - .PNM Image Decoding Remote Buffer Overflow

ImageMagick 6.x - .PNM Image Decoding Remote Buffer Overflow source: https://www.securityfocus.com/bid/13351/info A remotely exploitable client-side buffer-overflow vulnerability affects ImageMagick. This issue occurs because the application fails to properly validate the length of user-supplied...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2005/01/25 12:0 a.m.13 views

NullSoft Winamp 5.0.x - Variant IN_CDDA.dll Remote Buffer Overflow (PoC)

NullSoft Winamp 5.0.x - Variant INCDDA.dll Remote Buffer Overflow PoC source: https://www.securityfocus.com/bid/12381/info A remote buffer overflow vulnerability affects the INCDDA.dll library of Nullsoft's Winamp. This issue is due to a failure of the application to properly validate the length ...

0.8AI score
Exploits0
Exploit DB
Exploit DBadded 2004/09/13 12:0 a.m.27 views

QNX Photon phlocale - '-s' Overflow

source: https://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string lengths before copying them into finit...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2004/09/13 12:0 a.m.27 views

QNX Photon phrelay-cfg - '-s' Overflow

source: https://www.securityfocus.com/bid/11164/info Reportedly QNX Photon MicroGUI is affected by multiple buffer overflow vulnerabilities in MicroGUI utilities. These issues are due to a failure of the affected applications to validate user-supplied string lengths before copying them into finit...

7.4AI score
Exploits0
Rows per page
Query Builder