Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/11/11 12:14 a.m.4 views

CVE-2025-42885

CVE-2025-42885 concerns SAP HANA 2.0 (hdbrss), where missing authentication lets an unauthenticated attacker call a remote-enabled function to view information. This is a network-based issue with low confidentiality impact and no impact on integrity or availability, and has a CVSS3.1 base score o...

5.8CVSS6.4AI score0.0008EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/11/04 12:0 a.m.1 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to version 26.1 and Apple iPadOS prior to version 26.1, which stem...

7.5CVSS5.9AI score0.00048EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/03/20 12:0 a.m.2 views

Open WebUI 安全漏洞

Open WebUI is an extensible, feature-rich, user-friendly self-hosted WebUI from Open WebUI open source. A security vulnerability exists in Open WebUI version v0.3.8 that stems from improper access control and allows an attacker to view any prompted information...

4.3CVSS4.7AI score0.00166EPSS
Exploits1References1
Github Security Blog
Github Security Blogadded 2024/08/14 12:35 p.m.3 views

Magento Improper Authorization vulnerability

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures to view and edit low-sensitivity...

5.4CVSS6.3AI score0.00328EPSS
Exploits0References3Affected Software2
OSV
OSVadded 2024/07/19 9:15 a.m.0 views

CVE-2024-6905

A vulnerability has been found in SourceCodester Record Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file viewinfouser.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS5.8AI score
Exploits0References4
NVD
NVDadded 2022/09/21 1:15 p.m.9 views

CVE-2022-3255

If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...

6.8CVSS0.00011EPSS
Exploits1References2
CNVD
CNVDadded 2018/12/12 12:0 a.m.1 views

Cybozu Garoon Access Privilege Bypass Vulnerability

Cybozu Garoon is a portal-type OA office system of Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, etc. and supports free switching among three languages Chinese, Japanese, and English. An access privilege bypass vulnerability exists i...

7.5CVSS7.2AI score0.0023EPSS
Exploits0References1
CNVD
CNVDadded 2018/09/18 12:0 a.m.1 views

Apple iOS CoreMedia Component Information Disclosure Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices, of which CoreMedia is one of the media core components. A security vulnerability exists in the CoreMedia component in versions of Apple iOS prior to 12. The vulnerability can be exploited by an application to obtain informati...

5.3CVSS5.3AI score0.00179EPSS
Exploits0References1
Rows per page
Query Builder