Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2026/04/22 6:16 a.m.3 views

CVE-2026-22746

Vulnerability in Spring Spring Security. If an application is using the UserDetailsisEnabled, isAccountNonExpired, or isAccountNonLocked user attributes, to enable, expire, or lock users, then DaoAuthenticationProvider's timing attack defense can be bypassed for users who are disabled, expired, o...

3.7CVSS0.00067EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/22 12:0 a.m.4 views

Spring Security 安全漏洞

Spring Security is a security framework developed by Spring OpenSource that includes authentication and authorization features. There are security vulnerabilities in versions of Spring Security 5.7.22 and earlier, 5.8.24 and earlier, 6.3.15 and earlier, 6.5.9 and earlier, and 7.0.4 and earlier...

3.7CVSS5.8AI score0.00067EPSS
Exploits0References1
0day.today
0day.todayadded 2021/08/23 12:0 a.m.99 views

Simple Phone book/directory 1.0 - (Username) SQL Injection Vulnerability

Exploit Title: Simple Phone book/directory 1.0 - 'Username' SQL Injection Unauthenticated Exploit Author: Justin White Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/13011/phone-bookphone-directory.html Version: 1.0 Testeted on: Linux Ubuntu 20.0...

0.6AI score
Exploits0
Packet Storm
Packet Stormadded 2021/08/22 12:0 a.m.407 views

Simple Phone Book/Directory 1.0 SQL Injection

Exploit Title: Simple Phone book/directory 1.0 - 'Username' SQL Injection Unauthenticated Date: 21/08/2021 Exploit Author: Justin White Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/13011/phone-bookphone-directory.html Version: 1.0 Testeted on:...

0.4AI score
Exploits0
exploitpack
exploitpackadded 2009/06/22 12:0 a.m.25 views

elgg - Cross-Site Scripting Cross-Site Request Forgery Change Password

elgg - Cross-Site Scripting Cross-Site Request Forgery Change Password + CMS Elgg uploading to a host.Save as cookie.php +Exploit: ------- 1 Register in The SIte 2 add to the Template The victim would be anyone who comes to your blog...

0.7AI score
Exploits0
NVD
NVDadded 2002/05/29 4:0 a.m.9 views

CVE-2002-0254

ICQ 2001b Build 3659 allows remote attackers to cause a denial of service crash via a malformed picture that contains large height and width values, which causes the crash when viewed in Userdetails...

5CVSS6.6AI score0.00975EPSS
Exploits0References1
CVE
CVEadded 2002/05/03 4:0 a.m.36 views

CVE-2002-0254

CVE-2002-0254 affects ICQ 2001b Build 3659. The vulnerability allows a remote attacker to cause a denial-of-service (crash) by supplying a malformed picture containing abnormally large height and width values, which triggers the crash when the image is viewed in Userdetails. The available records...

5CVSS7AI score0.00975EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder