Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

ATTACKERKB
ATTACKERKBadded 2026/01/16 12:0 a.m.2 views

CVE-2025-24531

In OpenSC pampkcs11 before 0.6.13, pamsmauthenticate wrongly returns PAMIGNORE in many error situations such as an error triggered by a smartcard before login, allowing authentication bypass...

6.7CVSS5.3AI score0.00006EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/01/16 12:0 a.m.19 views

CVE-2025-24531

In OpenSC pampkcs11 before 0.6.13, pamsmauthenticate wrongly returns PAMIGNORE in many error situations such as an error triggered by a smartcard before login, allowing authentication bypass...

6.7CVSS0.00006EPSS
Exploits0References3
Microsoft CVE
Microsoft CVEadded 2025/10/02 6:11 a.m.3 views

libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.

...

7.1CVSS7AI score0.04749EPSS
Exploits1
OSV
OSVadded 2025/07/03 12:0 a.m.2 views

OPENSUSE-SU-2025:15257-1 pam_pkcs11-0.6.13-2.1 on GA media

These are all security issues fixed in the pampkcs11-0.6.13-2.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS7.2AI score0.0009EPSS
Exploits13References1
Vulnrichment
Vulnrichmentadded 2025/04/18 12:15 p.m.11 views

CVE-2025-32790 Dify Allows Insecure User Role Access Control for APP DSL Exporting

Dify is an open-source LLM app development platform. In versions 0.6.8 and prior, a vulnerability was identified in the DIFY AI where normal users are improperly granted permissions to export APP DSL. The feature in '/export' should only allow administrator users to export DSL. A workaround for...

6.3CVSS6.1AI score0.00131EPSS
Exploits1References3
Grafana
Grafanaadded 2024/02/14 12:0 a.m.2 views

SSRF in CSV Datasource Plugin

Grafana is an open-source platform for monitoring and observability. The CSV datasource plugin is a Grafana Labs maintained plugin that allows for retrieving and processing CSV data from a remote endpoint configured by an administrator. If this plugin was configured to send requests to a bare hos...

5.3CVSS5.8AI score0.00225EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2023/02/15 3:58 a.m.1 views

SUSE CVE-2020-12825

libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...

7.1CVSS7AI score0.04749EPSS
Exploits1References14
OSV
OSVadded 2021/12/27 12:15 a.m.4 views

DEBIAN-CVE-2018-25023

An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type...

7.5CVSS7.3AI score0.00231EPSS
Exploits1References1
CNVD
CNVDadded 2020/05/14 12:0 a.m.1 views

libcroco Buffer Overflow Vulnerability

libcroco is a CSS2 parsing library. A security vulnerability exists in the crparserparseanycore in the cr-parser.c file in libcroco 0.6.13 and earlier. An attacker can exploit this vulnerability to cause a denial of service stack consumption...

7.1CVSS8.4AI score0.04749EPSS
Exploits1References1
OSV
OSVadded 2020/05/12 6:15 p.m.2 views

AZL-11365 CVE-2020-12825 affecting package libcroco 0.6.13-6

libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption...

7.1CVSS6.6AI score0.04749EPSS
Exploits1References1
Rows per page
Query Builder