Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2025/11/12 10:15 p.m.1 views

CVE-2025-64500

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Symfony's HttpFoundation component defines an object-oriented layer for the HTTP specification. Starting in version 2.0.0 and prior to version 5.4.50, 6.4.29, and 7.3.7, the Request class improperly...

7.3CVSS0.06307EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-28408

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00386EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-45668

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00502EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 9:52 a.m.5 views

CVE-2024-30488

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Katie Zotpress zotpress.This issue affects Zotpress: from n/a through = 7.3.7...

8.8CVSS7.3AI score0.00386EPSS
Exploits0References1
CVE
CVEadded 2024/03/29 1:42 p.m.52 views

CVE-2024-30488

CVE-2024-30488 is tied to the Zotpress WordPress plugin (Zotpress, affected: n/a through 7.3.7) and is characterized as an SQL Injection. The linked Red Hat/WordFence entries confirm the issue exists as an authenticated (Contributor+) SQL injection against Zotpress and note a patched status, indi...

8.8CVSS7.3AI score0.00386EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/11/15 12:0 a.m.1 views

CVE-2022-42122

A SQL injection vulnerability in the Friendly Url module in Liferay Portal 7.3.7, and Liferay DXP 7.3 fix pack 2 through update 4 allows attackers to execute arbitrary SQL commands via a crafted payload injected into the title field of a friendly URL...

9.4AI score0.00815EPSS
Exploits0References3
Symantec
Symantecadded 2019/10/08 12:0 a.m.17 views

PHP 'new COM()' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.2 PHP PHP...

1.7AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2019/07/12 12:0 a.m.28 views

PHP 7.3.x < 7.3.7 Multiple Vulnerabilities.

According to its banner, the version of PHP running on the remote web server is 7.3.x prior to 7.3.7. It is, therefore, affected by a denial of service vulnerability in DOMDocumentType. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

5.6AI score
Exploits0References2
OpenVAS
OpenVASadded 2015/01/22 12:0 a.m.19 views

Vaadin Framework 7.0.0 - 7.3.6 XSS Vulnerability

Vaadin Framework is prone to a cross-site scripting XSS vulnerability because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective rig...

6.4AI score
Exploits0References1
Rows per page
Query Builder