Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2025/10/27 7:38 p.m.3 views

CVE-2025-62263

Multiple cross-site scripting XSS vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected int...

4.8CVSS0.00031EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/02/11 12:0 a.m.2 views

Quanxun School Affairs System 安全漏洞

Quanxun School Affairs System is a school affairs system from Quanxun. A security vulnerability exists in Quanxun School Affairs System. An attacker can exploit the vulnerability to view specific pages and obtain database information as well as plaintext administrator credentials...

9.8CVSS6.4AI score0.00348EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/02/11 12:0 a.m.2 views

PT-2025-6146 · Unknown · Quanxun School Affairs System

Name of the Vulnerable Software and Affected Versions: Quanxun School Affairs System affected versions not specified Description: The issue allows unauthenticated attackers to view specific pages and obtain database information as well as plaintext administrator credentials. This exposure of...

9.8CVSS7AI score0.00348EPSS
Exploits0References10
CNNVD
CNNVDadded 2021/08/03 12:0 a.m.1 views

Liferay Portal 和 Liferay DXP 权限许可和访问控制问题漏洞

Liferay Portal and Liferay DXP are both products of Liferay, a J2EE-based portal solution that uses EJB and JMS technologies and serves as a web publishing and shared workspace, enterprise collaboration platform, social network, etc. Liferay DXP is a digital experience collaboration platform...

4.3CVSS5.5AI score0.00121EPSS
Exploits0References2
OSV
OSVadded 2019/03/21 4:0 p.m.1 views

CVE-2018-18798

Attendance Monitoring System 1.0 has SQL Injection via the 'id' parameter to student/index.php?view=view, event/index.php?view=view, and user/index.php?view=view...

9.8CVSS5.8AI score0.02643EPSS
Exploits5References2
OSV
OSVadded 2016/02/22 5:59 a.m.0 views

UBUNTU-CVE-2015-5340

Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 does not consider the moodle/badges:viewbadges capability, which allows remote authenticated users to obtain sensitive badge information via a request involving 1 badges/overview.php or 2 badges/view.php...

4.3CVSS7.3AI score0.00172EPSS
Exploits0References3
Prion
Prionadded 2013/07/12 9:55 p.m.12 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Administration and View pages in Cisco Secure Access Control System ACS allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCud75177...

6.8CVSS7.7AI score0.00116EPSS
Exploits0References2
Drupal
Drupaladded 2008/01/14 12:0 a.m.13 views

SA-2008-008 - Meta tags - Arbitrary code execution

The Meta tags module, also known as Nodewords, adds HTML META tags to node, panel and view pages. If the site is configured to allow images in the body of any node type, any user that can create this node type is able to execute arbitrary code on the server. Versions affected Meta tags for Drupal...

7.8AI score
Exploits0References4
Rows per page
Query Builder