Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Patchstack
Patchstackadded 2022/09/01 12:0 a.m.34 views

WordPress GetResponse plugin <= 5.5.20 - Cross-Site Request Forgery (CSRF) vulnerability leading to API Key Update

Cross-Site Request Forgery CSRF vulnerability leading to API Key Update discovered by Rasi Afeef Patchstack Alliance in WordPress GetResponse plugin versions = 5.5.20. Solution Update the WordPress GetResponse for WordPress plugin to the latest available version at least 5.5.21...

8.8CVSS3.9AI score0.00107EPSS
Exploits0Affected Software1
CNVD
CNVDadded 2017/11/20 12:0 a.m.4 views

Laravel framework information disclosure vulnerability

Laravel framework is a PHP-based web application development framework developed by software developer Taylor Otwell. A security vulnerability exists in Laravel framework 5.5.21 and earlier versions. The vulnerability can be exploited by remote attackers to obtain sensitive information e.g.,...

7.5CVSS6.6AI score0.88787EPSS
Exploits4References1
Exploit DB
Exploit DBadded 2012/05/20 12:0 a.m.22 views

concrete5 index.php/tools/required/files/add_to searchInstance Parameter XSS

concrete5 index.php/tools/required/files/addto searchInstance Parameter XSS. Webapps exploit for php platform source: http://www.securityfocus.com/bid/53640/info Concrete CMS is prone to following vulnerabilities because it fails to properly handle user-supplied input. 1. Multiple cross-site...

7.4AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2012/04/06 12:0 a.m.3 views

PT-2012-3445 · Mysql Server +3 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.1.61 and earlier MySQL Server versions 5.5.21 and earlier Description: The issue affects the availability of the system, related to Server DML, and can be exploited by remote authenticated users. Recommendations: For...

9CVSS7.5AI score0.94058EPSS
Exploits9References60
Packet Storm
Packet Stormadded 2012/03/29 12:0 a.m.27 views

Seditio Build 161 Cross Site Scripting / Information Disclosure

========================================================== Vulnerable Software: seditio-build161 ========================================================== Downloaded from:http://neocrome.net/page.php?id=2447&a=dl md5sum sed.rar aad96010a15f0c38e5cc321f8a91dd1b seditio-build161.rar...

7.4AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2008/05/20 2:12 p.m.5 views

tomcat5 SSO cookie login information disclosure

The SingleSignOn Valve org.apache.catalina.authenticator.SingleSignOn in Apache Tomcat before 5.5.21 does not set the secure flag for the JSESSIONIDSSO cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie...

5CVSS5.8AI score0.03966EPSS
Exploits0References4
Rows per page
Query Builder