Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 2025/01/02 12:0 a.m.3 views

PT-2025-3205 · Themify · Themify Audio Dock

Name of the Vulnerable Software and Affected Versions: Themify Audio Dock versions n/a through 2.0.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations: For...

6.5CVSS8.9AI score0.00197EPSS
Exploits0References4
Patchstack
Patchstackadded 2024/12/30 4:3 p.m.1 views

WordPress Themify Audio Dock plugin <= 2.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Themify Audio Dock versions = 2.0.4...

6.5CVSS6.1AI score0.00197EPSS
Exploits0Affected Software1
OSV
OSVadded 2024/10/16 7:15 a.m.3 views

CVE-2019-25214

The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several REST API routes in versions up to, and including, 2.0.4. This makes it possible for unauthenticated attackers to call the endpoints and perform unauthorized actions such as updating...

6.1CVSS5.8AI score
Exploits0References2
PyPA
PyPAadded 2023/01/19 9:15 a.m.4 views

PYSEC-2023-282

Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.0.4...

6.5CVSS6.7AI score0.00111EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2021/05/28 9:15 p.m.1 views

CVE-2020-18395

A NULL-pointer deference issue was discovered in GNUgama::set in ellipsoid.h in Gama 2.04 which can lead to a denial of service DOS via segment faults caused by crafted inputs...

7.5CVSS7.1AI score0.00453EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2020/07/29 7:40 p.m.2 views

grub2: Fail kernel validation without shim protocol

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

6.4CVSS7AI score0.00024EPSS
Exploits0References4
OSV
OSVadded 2020/07/29 6:15 p.m.1 views

DEBIAN-CVE-2020-15706

GRUB2 contains a race condition in grubscriptfunctioncreate leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2...

6.4CVSS9.3AI score0.00051EPSS
Exploits0References1
OSV
OSVadded 2020/07/29 5:0 p.m.0 views

UBUNTU-CVE-2020-15706

GRUB2 contains a race condition in grubscriptfunctioncreate leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2...

6.4CVSS7.4AI score0.00051EPSS
Exploits0References7
OSV
OSVadded 2016/10/25 2:31 p.m.2 views

UBUNTU-CVE-2016-5598

Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Connector/Python...

5.6CVSS6.2AI score0.00304EPSS
Exploits0References2
Rows per page
Query Builder