Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2025/09/06 4:0 a.m.3 views

Insufficient Session Expiration

Overview Affected versions of this package are vulnerable to Insufficient Session Expiration via insecure session handling in prebuilt workspaces. An attacker can gain unauthorized access to other users' workspaces by reusing unexpired session tokens exposed through...

8.6CVSS7.1AI score0.00078EPSS
Exploits1References2
Snyk
Snykadded 2025/09/06 4:0 a.m.1 views

Insufficient Session Expiration

Overview Affected versions of this package are vulnerable to Insufficient Session Expiration via insecure session handling in prebuilt workspaces. An attacker can gain unauthorized access to other users' workspaces by reusing unexpired session tokens exposed through...

8.6CVSS6.9AI score0.00078EPSS
Exploits1References2
OSV
OSVadded 2025/06/10 2:27 p.m.3 views

CVE-2024-29198 GeoServer Vulnerable to Unauthenticated SSRF via TestWfsPost

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. It possible to achieve Service Side Request Forgery SSRF via the Demo request endpoint if Proxy Base URL has not been set. Upgrading to GeoServer 2.24.4, or 2.25.2, removes the...

7.5CVSS6.6AI score0.06989EPSS
Exploits0References5
Snyk
Snykadded 2022/05/24 5:37 p.m.2 views

SQL Injection

Overview mantisbt/mantisbt is a mantis bug tracker. Affected versions of this package are vulnerable to SQL Injection via the mcprojectgetusers function. An attacker can manipulate SQL queries and access or alter database information without proper authorization by injecting malicious SQL command...

6.5CVSS7.9AI score0.01737EPSS
Exploits3References2
CNVD
CNVDadded 2021/02/03 12:0 a.m.11 views

MantisBT Access Control Error Vulnerability (CNVD-2021-09042)

MantisBT is MantisBT Mantisbt team of a Web-based open source defect tracking system . The system provides project management and defect tracking services in the form of Web operations. An access control error vulnerability exists in MantisBT versions prior to 2.24.4, which stems from the fact th...

4.3CVSS6.5AI score0.00197EPSS
Exploits1References1
CNNVD
CNNVDadded 2020/12/30 12:0 a.m.2 views

MantisBT 安全漏洞

MantisBT is a lightweight, free and open source, web-based defect tracking system. An information disclosure vulnerability exists in MantisBT versions prior to 2.24.4. The vulnerability stems from a failure to check access to bugrevisionviewpage.php correctly. An attacker can exploit the...

7.5CVSS5.8AI score0.00762EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2019/12/17 1:2 p.m.4 views

Moderate: Red Hat Enhancement Advisory: webkit2gtk3 enhancement update

An updated webkit2gtk3 package that adds one enhancement is now available for Red Hat Enterprise Linux 8. This update adds the following enhancement: Update WebKitGTK to 2.24.4 BZ1755824. Users of webkit2gtk3 are advised to upgrade to this updated package, which adds this enhancement...

9.3CVSS6.7AI score0.08534EPSS
Exploits4References1
Tenable Nessus
Tenable Nessusadded 2019/10/14 12:0 a.m.39 views

SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2019:2345-2)

This update for webkit2gtk3 fixes the following issues : Updated to version 2.24.4 bsc1148931. Security issues fixed : CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, CVE-2019-8688, CVE-2019-8595, CVE-2019-8607, CVE-2019-8615...

9.3CVSS6.4AI score0.45572EPSS
Exploits7References51
Rows per page
Query Builder