Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

The Hacker News
The Hacker Newsadded 2021/01/01 4:50 a.m.1 views

Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code

Microsoft on Thursday revealed that the threat actors behind the SolarWinds supply chain attack were able to gain access to a small number of internal accounts and escalate access inside its internal network. The "very sophisticated nation-state actor" used the unauthorized access to view, but no...

5.9AI score
Exploits0
CNNVD
CNNVDadded 2020/12/31 12:0 a.m.1 views

Hgiga MailSherlock 输入验证错误漏洞

HGiga MailSherlock is an email archiving and auditing system that provides a complete email security solution. An arbitrary file download vulnerability exists in HGiga MailSherlock. The vulnerability stems from MailSherlock's View Source Code feature not validating specific characters. An attacke...

8.1CVSS5.9AI score0.0036EPSS
Exploits0References2
CNVD
CNVDadded 2019/09/30 12:0 a.m.2 views

Logic flaw vulnerability in Ruoyi's backend management system

Ruoyi backend management system is based on SpringBoot2.0 rights management system . A logic flaw vulnerability exists in the Ruoyi Backend Management System. An attacker can view the source code to obtain a username and password to log in to the backend...

7.2AI score
Exploits0
Cvelist
Cvelistadded 2005/11/16 9:17 p.m.17 views

CVE-2002-2186

Macromedia JRun 3.0, 3.1, and 4.0 allow remote attackers to view the source code of .JSP files via Unicode encoded character values in a URL...

6.8AI score0.0085EPSS
Exploits0References3
CVE
CVEadded 2004/09/01 4:0 a.m.62 views

CVE-2002-1156

CVE-2002-1156 affects Apache 2.0.42. The vulnerability allows remote attackers to view the source of a CGI script via a POST to a directory where both WebDAV and CGI are enabled. This yields partial confidentiality impact per the NVD metrics (CVSS v2: AV:N/AC:L/Au:N/C:P/I:N/A:N; base score 5.0). ...

5CVSS6.4AI score0.38519EPSS
Exploits0References17Affected Software1
CVE
CVEadded 2001/05/07 4:0 a.m.43 views

CVE-1999-0758

Affected software: Netscape Enterprise 3.5.1 and FastTrack 3.01. Vulnerability: remote attacker can view the source code of scripts by appending a space-encoded %20 to the script URL. Root cause / vector: insufficient handling of trailing spaces in URLs that leads to source disclosure. Impact: ex...

5CVSS7.2AI score0.00647EPSS
Exploits0References1Affected Software2
NVD
NVDadded 2001/03/12 5:0 a.m.11 views

CVE-1999-0758

Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL...

5CVSS6.8AI score0.00647EPSS
Exploits0References1
NVD
NVDadded 2000/06/08 4:0 a.m.17 views

CVE-2000-0497

IBM WebSphere server 3.0.2 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case...

7.5CVSS7.4AI score0.00729EPSS
Exploits0References3
Rows per page
Query Builder