Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNNVD
CNNVDadded 2025/11/18 12:0 a.m.1 views

Fortinet FortiClientWindows 安全漏洞

Fortinet FortiClientWindows is a Windows-based mobile endpoint security solution from Fortinet, Inc. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. A security vulnerability exis...

7.8CVSS7.5AI score0.00018EPSS
Exploits0References3
NVD
NVDadded 2024/11/01 5:15 p.m.18 views

CVE-2024-48217

An Insecure Direct Object Reference IDOR in the dashboard of SiSMART v7.4.0 allows attackers to execute a horizontal-privilege escalation...

8.8CVSS0.0144EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2024/11/01 12:0 a.m.199 views

CVE-2024-48217

An Insecure Direct Object Reference IDOR in the dashboard of SiSMART v7.4.0 allows attackers to execute a horizontal-privilege escalation. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS7.2AI score0.0144EPSS
In wildExploits1References2
Cvelist
Cvelistadded 2024/11/01 12:0 a.m.12 views

CVE-2024-48217

An Insecure Direct Object Reference IDOR in the dashboard of SiSMART v7.4.0 allows attackers to execute a horizontal-privilege escalation...

0.0144EPSS
Exploits1References1
CVE
CVEadded 2024/11/01 12:0 a.m.205 views

CVE-2024-48217

CVE-2024-48217 affects SiSMART v7.4.0: an Insecure Direct Object Reference (IDOR) in the dashboard enables horizontal privilege escalation. PoC shows manipulation of Local Storage (sekolah_kode, user_id, user_level, id_token) to impersonate an administrator via these session-state values, redirec...

8.8CVSS7.1AI score0.0144EPSS
In wildExploits1References1
Vulnrichment
Vulnrichmentadded 2024/08/29 12:0 a.m.9 views

CVE-2024-44776

An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to redirect users to a malicious site via a crafted URL...

6.6AI score0.00393EPSS
Exploits1References2
Prion
Prionadded 2024/02/13 7:15 p.m.10 views

Design/Logic Flaw

sfeventmgt is an event management and registration extension for the TYPO3 CMS based on ExtBase and Fluid. In affected versions the existing access control check for events in the backend module got broken during the update of the extension to TYPO3 12.4, because the RedirectResponse from the...

4CVSS7.1AI score0.00318EPSS
Exploits0References2
NVD
NVDadded 2022/09/27 11:15 p.m.10 views

CVE-2022-38335

Vtiger CRM v7.4.0 was discovered to contain a stored cross-site scripting XSS vulnerability via the e-mail template modules...

5.4CVSS0.00507EPSS
Exploits1References3
Packet Storm
Packet Stormadded 2016/02/18 12:0 a.m.51 views

Umbraco SSRF / Cross Site Request Forgery / Cross Site Scripting

image: Vulnerable Umbraco Recently I got an assignment where I had to work on the Umbraco application - a free Open Source Content Management System built on the ASP.NET platform and is used by more than 2,25,000 websites. While performing the security testing of this application, I discovered...

7.4AI score
Exploits0
Rows per page
Query Builder