Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

ATTACKERKB
ATTACKERKBadded 2026/03/15 6:34 p.m.0 views

CVE-2017-20218

Serviio PRO 1.8 contains an unquoted search path vulnerability in the Windows service that allows local users to execute arbitrary code with elevated privileges by placing malicious executables in the system root path. Additionally, improper directory permissions with full access for the Users...

6.2AI score0.00019EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/07 9:43 a.m.4 views

CVE-1999-0782

KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable...

2.1CVSS6.8AI score0.00112EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/12/17 12:0 a.m.3 views

AVideo 安全漏洞

AVideo is an open source broadcast network creation tool from World Wide Broadcast Network. A security vulnerability exists in AVideo versions prior to 20.0, which stems from a lack of ownership checking in the upload function that could cause an authenticated user to upload files to another user...

8.8CVSS6.5AI score0.00128EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2010-3347

Malware in sbrugna...

6.9CVSS6.1AI score0.00047EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2000-0297

Malware in sbrugna...

7.2CVSS6.4AI score0.01177EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-1999-0763

Malware in sbrugna...

2.1CVSS6.4AI score0.00112EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/06/23 8:39 a.m.2 views

CVE-2025-24287

A vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with elevated permissions...

6.1CVSS7.8AI score0.00073EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 12:49 a.m.6 views

CVE-2011-1550

The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as...

6.3CVSS6.8AI score0.00045EPSS
Exploits0References1
CNVD
CNVDadded 2018/02/07 12:0 a.m.3 views

Z-BlogPHP Cross-Site Request Forgery Vulnerability

Z-BlogPHP is an open source PHP-based blogging system developed by the Z-Blog community. A cross-site request forgery vulnerability exists in Z-BlogPHP version 1.5.1. A remote attacker can exploit this vulnerability to delete the users directory and files with the help of the...

6.5CVSS6.9AI score0.00098EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2017/03/17 12:0 a.m.4 views

PT-2017-6703 · Qdpm · Qdpm

Name of the Vulnerable Software and Affected Versions: qdPM version 8.3 Description: The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to various pages in qdPM, including myAccount, projects, tasks, tickets, discussions, reports, and...

8.8CVSS8.8AI score0.7292EPSS
Exploits4References8
Metasploit
Metasploitadded 2011/03/14 5:36 a.m.14 views

Foxit PDF Reader 4.2 Javascript File Write

This module exploits an unsafe Javascript API implemented in Foxit PDF Reader version 4.2. The createDataObject Javascript API function allows for writing arbitrary files to the file system. This issue was fixed in version 4.3.1.0218. Note: This exploit uses the All Users directory currently, whi...

7.4AI score
Exploits0
Rows per page
Query Builder