Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-8054

Malware in sbrugna...

9.3CVSS8.5AI score0.00168EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 3:15 p.m.4 views

CVE-2020-16087

An issue was discovered in Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can run arbitrary commands on a remote Windows machine running the Zalo client by sending the user of the device a crafted file...

9.3CVSS7.3AI score0.00168EPSS
Exploits1
vulnersOsv
vulnersOsvadded 2024/02/09 5:4 p.m.0 views

drc-cmis (>=1.3.0 <=1.6.0) potentially affected by unknown CVE via vng-api-common (=2.0.5)

vng-api-common PYPI version =2.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on vng-api-common and may be impacted: - drc-cmis =1.3.0, =1.6.0 Source cves: unknown CVE Source advisory: OSV:GHSA-C4CM-R9FH-JGJ9...

5.8AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2024/02/09 12:0 a.m.1 views

PT-2024-40234 · Unknown +1 · Vng-Api-Common +1

Name of the Vulnerable Software and Affected Versions: vng-api-common versions prior to 1.12.2 Description: This issue is related to a privilege escalation vulnerability, although its impact is negligible and entirely theoretical. It involves the verification of client-supplied JSON Web Tokens JW...

7.4AI score
Exploits0References3
OSV
OSVadded 2022/07/13 9:42 p.m.19 views

GHSA-8V7H-CPC2-R8JP October CMS upload process vulnerable to RCE via Race Condition

Impact This advisory affects plugins that expose the October\Rain\Database\Attach\File::fromData as a public interface. This vulnerability does not affect vanilla installations of October CMS since this method is not exposed or used by the system internally or externally. When the developer allow...

8.1CVSS8.4AI score0.02925EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2022/07/13 9:42 p.m.58 views

October CMS upload process vulnerable to RCE via Race Condition

Impact This advisory affects plugins that expose the October\Rain\Database\Attach\File::fromData as a public interface. This vulnerability does not affect vanilla installations of October CMS since this method is not exposed or used by the system internally or externally. When the developer allow...

8.1CVSS0.6AI score0.02925EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2020/08/13 1:15 p.m.2 views

CVE-2020-16087

An issue was discovered in Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can run arbitrary commands on a remote Windows machine running the Zalo client by sending the user of the device a crafted file...

8.6CVSS7.5AI score0.00168EPSS
Exploits1References3
CVE
CVEadded 2020/08/13 12:21 p.m.42 views

CVE-2020-16087

Summary: CVE-2020-16087 affects Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can cause arbitrary command execution on a remote Windows machine by the user opening a crafted file sent to them. The vulnerability is described as a locally exploitable issue with the potential for high impact on...

9.3CVSS8.5AI score0.00168EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2020/08/13 12:21 p.m.15 views

CVE-2020-16087

An issue was discovered in Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can run arbitrary commands on a remote Windows machine running the Zalo client by sending the user of the device a crafted file...

8.6AI score0.00168EPSS
Exploits1References3
Rows per page
Query Builder