Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2024/12/19 12:0 a.m.2 views

Stirling-PDF 安全漏洞

Stirling-PDF is a powerful, locally hosted, web-based PDF manipulation tool using Docker, open-sourced by Stirling Tools. A security vulnerability exists in Stirling-PDF version 0.35.1, which stems from vulnerability to a server-side request forgery attack that allows an attacker to access...

7.5CVSS6.2AI score0.00373EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/12/19 12:0 a.m.3 views

PT-2024-36472 · Unknown · Stirling-Pdf

Name of the Vulnerable Software and Affected Versions: Stirling-PDF version 0.35.1 Description: A Server-Side Request Forgery SSRF issue in the endpoint "http://your-server/url-to-pdf" of Stirling-PDF allows attackers to access sensitive information via a crafted request. This enables attackers t...

7.5CVSS6.7AI score0.00373EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2024/11/14 12:0 a.m.8 views

Fedora 41 : kitty (2024-d2ec3e14a7)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-d2ec3e14a7 advisory. Automatic update for kitty-0.35.1-4.fc41. Changelog Mon Jun 17 2024 Pavel Solovev - 0.35.1-4 - rebuild for rhbz2292712 Tenable has extracted the preceding...

5.5CVSS7.3AI score0.00007EPSS
Exploits0References2
OSV
OSVadded 2022/11/13 10:15 a.m.14 views

CVE-2022-3971

A vulnerability was found in matrix-appservice-irc up to 0.35.1. It has been declared as critical. This vulnerability affects unknown code of the file src/datastore/postgres/PgDataStore.ts. The manipulation of the argument roomIds leads to sql injection. Upgrading to version 0.36.0 is able to...

5.6CVSS6.2AI score
Exploits0References4
vulnersOsv
vulnersOsvadded 2022/04/01 1:36 p.m.0 views

wasmtime-cli (>=0.35.0 <=0.35.1) potentially affected by CVE-2022-24791 via wasmtime (>=0.35.0 <=0.35.1)

wasmtime CARGO version =0.35.0, =0.35.0, =0.35.1 Source cves: CVE-2022-24791 Source advisory: OSV:GHSA-GWC9-348X-QWV2...

9.8CVSS7.2AI score0.00469EPSS
Exploits0
PyPA
PyPAadded 2020/01/28 1:15 a.m.4 views

PYSEC-2020-224

An information disclosure issue was found in Apache Superset 0.34.0, 0.34.1, 0.35.0, and 0.35.1. Authenticated Apache Superset users are able to retrieve other users' information, including hashed passwords, by accessing an unused and undocumented API endpoint on Apache Superset...

6.5CVSS6.3AI score0.00222EPSS
Exploits0References2Affected Software1
CNVD
CNVDadded 2016/09/23 12:0 a.m.1 views

cherry music Arbitrary File Disclosure Vulnerability

cherry music is a music product. An arbitrary file disclosure vulnerability exists in cherry music version 0.35.1, which allows an attacker to download arbitrary files without authentication...

4.3CVSS6.9AI score0.06564EPSS
Exploits5References1
Rows per page
Query Builder