Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CVE
CVEadded 2025/11/29 3:5 a.m.18 views

CVE-2025-66225

OrangeHRM versions 5.0–5.7 are vulnerable to account takeover due to an unvalidated username in the final password-reset request. The reset workflow does not verify that the submitted username matches the account initiated for the reset, allowing an attacker with a valid reset link to modify the ...

8.8CVSS6.6AI score0.00151EPSS
Exploits0References1Affected Software1
CNVD
CNVDadded 2018/07/19 12:0 a.m.1 views

Azeus CMS V2.0 suffers from logical design flaws

Azeus CMS is a cms system made by Azeus Studio, this CMS is written in UTF-8 coding. A logical design vulnerability exists in Azeus CMS V2.0. After logging into the system, an attacker can use any user name to comment and perform unauthorized operations by grabbing packets and modifying the user...

6.9AI score
Exploits0
Rows per page
Query Builder