Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 5:25 p.m.2 views

CVE-2020-11063

In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an attacker to mount user enumeration based on email addresses assigned to backend user accounts. This has been fixed in 10.4.2...

4.3CVSS4.8AI score0.00292EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/05/03 5:39 p.m.15 views

CVE-2023-28952 IBM Cognos Controller log injection

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to injection attacks in application logging by not sanitizing user provided data. IBM X-Force ID: 251463...

5.3CVSS5.5AI score0.0007EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/05/03 12:0 a.m.1 views

IBM Cognos Controller 安全漏洞

IBM Cognos Controller is a suite of business intelligence and planning solutions from International Business Machines IBM. The product features process automation, financial audit control, and creating and managing financial reports. A security vulnerability exists in IBM Cognos Controller versio...

5.3CVSS8.6AI score0.00048EPSS
Exploits0References3
Tenable Product Security Advisories
Tenable Product Security Advisoriesadded 2023/01/18 3:22 p.m.14 views

[R2] Nessus Version 10.4.2 Fixes One Vulnerability

R2 Nessus Version 10.4.2 Fixes One Vulnerability Arnie Cabral Wed, 01/18/2023 - 10:22 A privilege escalation vulnerability was identified in Nessus versions 10.4.1 and earlier. An authenticated attacker could potentially execute a specially crafted file to obtain root or NT AUTHORITY / SYSTEM...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/07/13 12:0 a.m.29 views

TYPO3 9.5.12 < 9.5.17 / 10.2 < 10.4.2 XSS (TYPO3-CORE-SA-2020-003)

The version of TYPO3 installed on the remote host is 9.5.12 prior to 9.5.17 or 10.2 prior to 10.4.2. It is, therefore, affected by a cross-site scripting XSS vulnerability in its link handling component due to improper validation of user-supplied input before returning it to users. An...

5.4CVSS5.9AI score0.00206EPSS
Exploits0References2
OSV
OSVadded 2020/05/14 12:15 a.m.12 views

CVE-2020-11067

In TYPO3 CMS 9.0.0 through 9.5.16 and 10.0.0 through 10.4.1, it has been discovered that backend user settings in $BEUSER-uc are vulnerable to insecure deserialization. In combination with vulnerabilities of third party components, this can lead to remote code execution. A valid backend user...

8.8CVSS9.1AI score
Exploits0References1
OSV
OSVadded 2020/05/13 11:15 p.m.11 views

CVE-2020-11063

In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an attacker to mount user enumeration based on email addresses assigned to backend user accounts. This has been fixed in 10.4.2...

3.7CVSS4.2AI score
Exploits0References3
Rows per page
Query Builder