Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentadded 2024/09/30 8:9 a.m.7 views

CVE-2024-6394 Local File Inclusion in parisneo/lollms-webui

A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The vulnerability is due to unverified path concatenation in the servejs function in app.py, which allows attackers to perform path traversal attacks. This can lead to unauthorized access to arbitrary files ...

7.5CVSS6.6AI score0.00595EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/08/01 3:32 p.m.13 views

CVE-2024-6040 Missing client_id in parisneo/lollms-webui

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

4.4CVSS6.9AI score0.00161EPSS
Exploits1References1
CVE
CVEadded 2024/08/01 3:32 p.m.47 views

CVE-2024-6040

CVE-2024-6040 affects parisneo/lollms-webui v9.8 where lollms_binding_infos lacks the client_id parameter. The endpoints /reload_binding, /install_binding, /reinstall_binding, /unInstall_binding, /set_active_binding_settings, and /update_binding_settings are vulnerable to CSRF and local attacks, ...

8.8CVSS4.9AI score0.00161EPSS
Exploits1References1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/16 1:39 p.m.31 views

Security Bulletin: IBM® DB2® LUW contains a denial of service vulnerability in which a malformated DRDA message may cause the DB2 server to terminate abnormally (CVE-2016-0211)

Summary IBM DB2 LUW contains a denial of service vulnerability. A remote, authenticated DB2 user could exploit this vulnerability by issuing a specially-crafted DRDA message and cause DB2 server to terminate abnormally. Vulnerability Details CVEID: CVE-2016-0211 DESCRIPTION: IBM DB2 LUW contains ...

4.3CVSS0.1AI score0.02126EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/16 1:6 p.m.24 views

Security Bulletin: IBM® DB2® LUW contains a denial of service vulnerability in ALTER MODULE statement handling. (CVE-2014-3094)

Summary IBM DB2 is vulnerable to a stack buffer overflow, caused by improper bounds checking in the handling of the ALTER MODULE statement. Vulnerability Details CVE ID: CVE-2014-3094 DESCRIPTION: DB2 is vulnerable to a stack buffer overflow attack, caused by improper bounds checking in the...

8.5CVSS0.4AI score0.05044EPSS
Exploits0Affected Software2
securityvulns
securityvulnsadded 2010/12/17 12:0 a.m.36 views

Alt-N WebAdmin Source Code Disclosure

Vulnerable: v3.3.3 Vendor: www.altn.com Category: Environment Error Vulnerable ======== Alt-N WebAdmin 3.3.3 U-Mail for Windows V9.8 U-Mail GateWay for Windows V9.8 Details: ========= A source code disclosure vulnerability exists with Alt-N WebAdmin Server. Remote attacker can be exploited to...

1.2AI score
Exploits0
Rows per page
Query Builder