Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/07 8:46 p.m.14 views

CVE-2026-33439 Pre-Authentication Remote Code Execution via `jato.clientSession` Deserialization in OpenAM

Open Access Management OpenAM is an access management solution. Prior to 16.0.6, OpenIdentityPlatform OpenAM is vulnerable to pre-authentication Remote Code Execution RCE via unsafe Java deserialization of the jato.clientSession HTTP parameter. This bypasses the WhitelistObjectInputStream...

9.3CVSS0.13374EPSS
Exploits2References1
SUSE CVE
SUSE CVEadded 2023/10/18 1:2 a.m.1 views

SUSE CVE-2023-45149

Nextcloud talk is a chat module for the Nextcloud server platform. In affected versions brute force protection of public talk conversation passwords can be bypassed, as there was an endpoint validating the conversation password without registering bruteforce attempts. It is recommended that the...

4.3CVSS7AI score0.00179EPSS
Exploits0References3
Prion
Prionadded 2023/07/13 3:15 a.m.19 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. This allowed a developer to remove the CODEOWNERS rules and merge to a protected branch...

4CVSS4.3AI score0.00153EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2023/07/13 2:8 a.m.22 views

CVE-2023-3362

Removed by vendor...

5.3CVSS6AI score0.00597EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2023/07/13 2:0 a.m.14 views

CVE-2023-2190 Authorization Bypass Through User-Controlled Key in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.10 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. It may be possible for users to view new commits to private projects in a fork created while the...

6.5CVSS6.3AI score0.00135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/06/29 12:0 a.m.25 views

GitLab 16.0 < 16.0.6 / 16.1 < 16.1.1 (CVE-2023-3362)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An information disclosure issue in GitLab CE/EE affecting all versions from 16.0 prior to 16.0.6, and version 16.1.0 allows unauthenticated actors to access the import error information if a project w...

5.3CVSS5.7AI score0.00597EPSS
Exploits0References3
OpenVAS
OpenVASadded 2020/02/06 12:0 a.m.37 views

Nextcloud Server < 15.0.13, < 16.0.6, < 17.0.1 Information Disclosure Vulnerability (NC-SA-2019-012)

Nextcloud Server is prone to an information disclosure vulnerability where file-drop content is visible through the gallery app. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

4.3CVSS5.3AI score0.00517EPSS
Exploits0References1
Rows per page
Query Builder