Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-15108

Malware in sbrugna...

8.5CVSS8.6AI score0.00571EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2015-9098

Malware in sbrugna...

9.8CVSS7.3AI score0.01901EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-2016

Malware in sbrugna...

7.5CVSS7.8AI score0.00597EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/22 4:3 a.m.3 views

CVE-2015-9255

Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information about data, software versions, configuration, and virtual machines via a request to a Web Virtual Directory...

5.3CVSS6.6AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/21 6:9 p.m.3 views

CVE-1999-0407

By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system...

10CVSS7.1AI score0.29622EPSS
Exploits0References1
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.200 views

ClanSphere 2011.3 Local File Inclusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ClanSphere 2011.3 Local File Inclusion Vulnerability', 'Description' = %q This module exploits a directory traversal flaw found in Clansphere...

7.4AI score
Exploits0
CVE
CVEadded 2023/04/10 3:31 a.m.36 views

CVE-2014-125098

Dart http_server up to 0.9.5 is affected in the VirtualDirectory handler (lib/src/virtual_directory.dart). Malicious manipulation of request.uri.path enables cross-site scripting. The issue can be exploited remotely. Remediation: upgrade to version 0.9.6 (patch: 27c1cbd8125bb0369e675eb72e48218496...

6.1CVSS5.1AI score0.00331EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2023/04/10 12:0 a.m.6 views

PT-2023-10166 · Unknown · Dart Http Server

Name of the Vulnerable Software and Affected Versions: Dart http server versions up to 0.9.5 Description: A issue was found in the Directory Listing Handler component, specifically in the VirtualDirectory function of the lib/src/virtual directory.dart file. The manipulation of the request.uri.pat...

6.1CVSS4.7AI score0.00331EPSS
Exploits0References6
Broadcom
Broadcomadded 2020/07/06 12:0 a.m.5 views

BSA-2020-1043

Security Advisory ID : BSA-2020-1043 Component : Apache Tomcat Revision : 1.0: Final When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially...

7.5CVSS7.1AI score0.90641EPSS
Exploits4
Packet Storm
Packet Stormadded 2020/03/12 12:0 a.m.820 views

SQL Server Reporting Services (SSRS) ViewState Deserialization

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SQL Server Reporting Services SSRS ViewState Deserialization', 'Description' = %q A vulnerability exists within Microsoft's SQL Server Reporting...

6.5CVSS0.2AI score0.9424EPSS
Exploits14
Metasploit
Metasploitadded 2020/03/06 9:21 p.m.1011 views

SQL Server Reporting Services (SSRS) ViewState Deserialization

A vulnerability exists within Microsoft's SQL Server Reporting Services which can allow an attacker to craft an HTTP POST request with a serialized object to achieve remote code execution. The vulnerability is due to the fact that the serialized blob is not signed by the server. This module...

8.8CVSS8.9AI score0.9424EPSS
Exploits14
CNVD
CNVDadded 2018/10/19 12:0 a.m.1 views

Oracle Fusion Middleware Virtual Directory Component Access Control Error Vulnerability

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle. The platform provides middleware, software collections, etc. Virtual Directory is one of the virtual directory components. An access control error...

8.5CVSS8.4AI score0.00571EPSS
Exploits0References1
NVD
NVDadded 2018/10/17 1:31 a.m.9 views

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

8.5CVSS6.1AI score0.00571EPSS
Exploits0References2
OSV
OSVadded 2018/10/17 1:31 a.m.1 views

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

8.5CVSS7.3AI score0.00571EPSS
Exploits0References2
Prion
Prionadded 2018/10/17 1:31 a.m.10 views

Buffer overflow

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

6CVSS6.6AI score0.00571EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2018/10/17 1:0 a.m.11 views

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

6.8AI score0.00571EPSS
Exploits0References2
CVE
CVEadded 2018/10/17 1:0 a.m.43 views

CVE-2018-3253

The CVE-2018-3253 entry concerns Oracle Fusion Middleware’s Oracle Virtual Directory component (Virtual Directory Manager). Affected are 11.1.1.7.0 and 11.1.1.9.0. The vulnerability is described as exploitable by a low-privileged attacker with network access over HTTP, potentially allowing unauth...

8.5CVSS6.6AI score0.00571EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2018/10/17 1:0 a.m.9 views

CVE-2018-3253

Vulnerability in the Oracle Virtual Directory component of Oracle Fusion Middleware subcomponent: Virtual Directory Manager. Supported versions that are affected are 11.1.1.7.0 and 11.1.1.9.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

5.9AI score0.00571EPSS
Exploits0References2
CNVD
CNVDadded 2018/06/26 12:0 a.m.1 views

Micro Focus Solutions Business Manager Code Execution Vulnerability

Micro Focus Solutions Business Manager SBM is a suite of business process automation management solutions from Micro Focus UK. The solution is primarily used for process automation, including software development lifecycle and IT business process management. A remote code execution vulnerability...

9.8CVSS9.8AI score0.01689EPSS
Exploits0References1
NVD
NVDadded 2018/02/20 6:29 a.m.8 views

CVE-2015-9255

Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information about data, software versions, configuration, and virtual machines via a request to a Web Virtual Directory...

5.3CVSS5.2AI score0.00234EPSS
Exploits0References1
Rows per page
Query Builder