Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Unauthenticated Craft CMS users can trigger a database backup
Users are able to find users by name even when `enable_names` is off
phpMyFAQ has unauthenticated config backup download via /api/setup/backup
Langfuse vulnerable to cross‑organization enumeration of member & invitation lists via project membership APIs
Dragonfly allows arbitrary file read and write on a peer machine
Dell Wyse Management Suite, versions prior to WMS 5
Dell Wyse Management Suite, versions prior to WMS 5
Remote Authentication-Bypass can lead to server crash or limited information disclosure due to faulty pattern matching
RESTful Web Services - Critical - Access bypass - SA-CONTRIB-2024-019
A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker ...
Cleartext Storage of Username and Password in Finrota's Netahsilat
Information leak in api
A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to...
SourceCodester Best Online News Portal check_availability.php information exposure
WordPress ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium plugin <= 1.1.0 - Sensitive Data Exposure vulnerability
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability
A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures
Cisco SD-WAN vManage Software Information Disclosure Vulnerability
Cisco DNA Center Information Disclosure Vulnerability
Passwords used to access external services inadvertently exposed through API
Showing 1 - 20 of 1,000+ results