Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/08 10:56 p.m.4 views

EUVD-2026-28864

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.1.0, all Docker container management endpoints in Termix interpolate the containerId URL path parameter and WebSocket message field directly into shell commands execute...

9.9CVSS6AI score0.00083EPSS
Exploits0References2
OSV
OSVadded 2026/02/09 12:30 p.m.1 views

GHSA-C244-P6M5-VQJ6 Apache Shiro has an Authentication Bypass

Impact Authentication Bypass: A vulnerability exists in Apache Shiro that allows authentication bypass for static files when served from a case-insensitive filesystem such as the default configuration on macOS or Windows. The issue arises when Shiro's URL filters are configured with lower-case...

5.3CVSS5.8AI score0.00102EPSS
Exploits0References5
Patchstack
Patchstackadded 2026/01/16 11:46 p.m.4 views

WordPress Spin Wheel plugin <= 2.1.0 - Unauthenticated Client-Side Prize Manipulation via 'prize_index' Parameter vulnerability

Unauthenticated Client-Side Prize Manipulation via 'prizeindex' Parameter vulnerability discovered by jsonc in WordPress Plugin Spin Wheel versions = 2.1.0...

5.3CVSS7AI score0.001EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2025/09/30 12:0 a.m.1 views

IBM Planning Analytics Local 安全漏洞

IBM Planning Analytics Local is a web-based local architecture from International Business Machines IBM. A security vulnerability exists in IBM Planning Analytics Local versions 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13, which stems from improper input validation and could result in...

4.9CVSS4.4AI score0.00061EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/09/17 7:30 p.m.6 views

CVE-2025-59348 Dragonfly incorrectly handles a task structure’s usedTraffic field

Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, the processPieceFromSource method does not update the structure’s usedTraffic field, because an uninitialized variable n is used as a guard to the AddTraffic method call, instead of the...

6.9CVSS0.00091EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/06/24 12:0 a.m.2 views

PT-2022-11320 · Unknown · Validate-Color

Name of the Vulnerable Software and Affected Versions: validate-color version 2.1.0 Description: A Regular Expression Denial of Service ReDOS issue was found in the handling of crafted invalid rgba strings. Recommendations: For version 2.1.0, at the moment, there is no information about a newer...

7.5CVSS7.3AI score0.00334EPSS
Exploits1References3
OSV
OSVadded 2022/05/24 5:21 p.m.1 views

GHSA-VW57-55F8-C73Q Mattermost Server allows XSS via CSRF

An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF...

6.1CVSS6.3AI score0.00125EPSS
Exploits0References3
OSV
OSVadded 2020/05/29 8:15 p.m.1 views

DEBIAN-CVE-2020-11043

In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfxprocessmessagetileset. Invalid data fed to RFX decoder results in garbage on screen as colors. This has been patched in 2.1.0...

2.7CVSS6.7AI score0.00134EPSS
Exploits0References1
Rows per page
Query Builder