Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/05/07 5:28 p.m.6 views

CVE-2025-24977

OpenCTI is an open cyber threat intelligence CTI platform. Prior to version 6.4.11 any user with the capability manage customizations can execute commands on the underlying infrastructure where OpenCTI is hosted and can access internal server side secrets by misusing the web-hooks. Since the...

9.1CVSS7.2AI score0.00528EPSS
Exploits0References1
PyPA
PyPAadded 2025/05/05 5:18 p.m.10 views

PYSEC-2025-179

OpenCTI is an open cyber threat intelligence CTI platform. Prior to version 6.4.11 any user with the capability manage customizations can execute commands on the underlying infrastructure where OpenCTI is hosted and can access internal server side secrets by misusing the web-hooks. Since the...

9.1CVSS7.5AI score0.00528EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2025/05/05 5:18 p.m.10 views

CVE-2025-24977

OpenCTI is an open cyber threat intelligence CTI platform. Prior to version 6.4.11 any user with the capability manage customizations can execute commands on the underlying infrastructure where OpenCTI is hosted and can access internal server side secrets by misusing the web-hooks. Since the...

9.1CVSS0.00528EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/02/09 12:0 a.m.1 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an illegal authorization vulnerability that stems from the Jira plugin's inability to check the security level of incoming issues when processing subscriptions and to restrict...

4.1CVSS6.8AI score0.00292EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2023/06/05 10:26 p.m.475 views

Exploit for Special Element Injection in Rocket.Chat

CVE-2021-22911 Pre-Auth Blind NoSQL Injection leading to Remot...

9.8CVSS10AI score0.92332EPSS
Exploits16
Wordfence Blog
Wordfence Blogadded 2022/12/14 7:4 p.m.12 views

Wordfence Launches Free Vulnerability Database For Commercial Use – And Launches Security Portal

Today we are incredibly excited to announce that Wordfence is launching an entirely free vulnerability database API and web interface, available for commercial use by hosting companies, security organizations, threat analysts, security researchers, and the WordPress user community. This is part o...

6.8AI score
Exploits0
Fedora
Fedoraadded 2022/01/16 1:20 a.m.35 views

[SECURITY] Fedora 35 Update: python-celery-5.2.3-2.fc35

An open source asynchronous task queue/job queue based on distributed message passing. It is focused on real-time operation, but supports scheduling as well. The execution units, called tasks, are executed concurrently on one or more worker nodes using multiprocessing, Eventlet or gevent. Tasks c...

7.5CVSS0.2AI score0.01396EPSS
Exploits1
Rows per page
Query Builder