Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Prion
Prionadded 2024/02/08 9:15 a.m.19 views

Cross site request forgery (csrf)

Request smuggling vulnerability in HTTP server in Apache bRPC 0.9.51.7.0 on all platforms allows attacker to smuggle request. Vulnerability Cause Description: The httpparser does not comply with the RFC-7230 HTTP 1.1 specification. Attack scenario: If a message is received with both a...

5CVSS7.4AI score0.01637EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blogadded 2023/05/22 8:36 p.m.34 views

Craft CMS vulnerable to Remote Code Execution via unrestricted file extension

Summary Unrestricted file extension lead to a potential Remote Code Execution Authenticated, ALLOWADMINCHANGES=true Details Vulnerability Cause : If the name parameter value is not empty string'' in the View.php's doesTemplateExist - resolveTemplate - resolveTemplateInternal - resolveTemplate...

7.2CVSS8.1AI score0.01845EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTECadded 2022/04/25 12:0 a.m.5 views

The vulnerability of the `exif_convert_any_to_int` function in the PHP programming language allows a hacker to trigger a service failure.

The vulnerability of the exifconvertanytoint function in the PHP programming language is related to errors in number processing. Exploiting this vulnerability can allow an attacker to cause service failures through specially created EXIF data...

7.8CVSS7.4AI score0.07763EPSS
Exploits0References12Affected Software3
myhack58
myhack58added 2018/11/25 12:0 a.m.119 views

WordPress Plugin Quizlord 2.0 XSS vulnerability reproduction and analysis-vulnerability warning-the black bar safety net

WordPress is a PHP language development blog platform, users can support PHP and MySQL database server set up your own website. You can also put WordPress as a CMS to use. WordPress often broke loopholes is it the plug-in there Security. Vulnerability reproduction First build worepress, my versio...

7.2AI score
Exploits0
UbuntuCve
UbuntuCveadded 2018/03/20 5:29 a.m.24 views

CVE-2018-8809

In radare2 2.4.0, there is a heap-based buffer over-read in the dalvikop function of analdalvik.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted dex file...

5.5CVSS6.2AI score0.01145EPSS
Exploits1References2
0day.today
0day.todayadded 2017/09/12 12:0 a.m.17 views

MobaXtrem 10.4 Remote Code Execution Exploit

Exploit for windows platform in category remote exploits import telnetlib,sys Exploit Title: MobaXtrem 10.4 Remote Code Execution Date: 11/9/2017 Exploit Author: Sultan Albalawi Vendor Homepage: http://mobatek.net Software Link:...

7.1AI score
Exploits0
myhack58
myhack58added 2017/03/09 12:0 a.m.37 views

PostMessage cross-domain vulnerability-vulnerability warning-the black bar safety net

Note: this article is“millet Security Center”original, reprint please contact the“millet Security Center” Background Value: $3000 Vulnerability cause: postMessage cross-domain vulnerabilities to cause, the use of the websocket receives a user authentication token Original address:...

7.1AI score
Exploits0
Rows per page
Query Builder