Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-42856

Malicious code in bioql PyPI...

6.8CVSS6.4AI score0.00162EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-9651

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0771EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/23 8:57 a.m.3 views

CVE-2024-47580

An attacker authenticated as an administrator can use an exposed webservice to create a PDF with an embedded attachment. By specifying the file to be an internal server file and subsequently downloading the generated PDF, the attacker can read any file on the server with no effect on integrity or...

6.8CVSS6.6AI score0.00162EPSS
Exploits0References1
CVE
CVEadded 2024/12/10 12:12 a.m.58 views

CVE-2024-47579

The CVE-2024-47579 entry concerns SAP NetWeaver AS Java. An attacker with administrator privileges can use an exposed webservice to upload or download a custom PDF font file on the system server. The upload can copy an internal file into a font file, and the download can retrieve that file, allow...

6.8CVSS6.5AI score0.00162EPSS
Exploits0References2
seebug.org
seebug.orgadded 2014/07/22 12:0 a.m.46 views

TRS WCM越权直接创建任意用户(无需审核)

简要描述: 任意创建用户,无需审核,直接登录。 详细说明: 1、首先我们确定一个不存在或者密码错误的用户名: 2、通过webservice调用创建用户的方法,创建一个用户: =============================== 在乌云找了找, WooYun: TRS系统任意文件下载漏洞 中只发现一个存在该方法的案例 http://wcm.xxz.gov.cn:8080/wcm/ 湘西州政府站群 漏洞证明: 成功登录新创建的用户:...

7.1AI score
Exploits0
Rows per page
Query Builder