Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Stored Cross-Site Scripting in Altium Forum Leading to Cross-Customer Data Exposure
Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Authorization
Pimcore is Missing Function Level Authorization on "Static Routes" Listing
Pimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" Listing
GLPI incorrectly authorizes access to documents
A local privilege escalation vulnerability exists during the installation of Epic Games Store via the Microsoft Store
An access control vulnerability was discovered in Grafana OSS where an Organization administrator could permanently delete the Server administrator...
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potenti...
Weblate leaks information via screenshots
Polkit authentication dis isabled by default in inputplumber
n8n has a Webhook Node IP Whitelist Bypass via Partial String Matching
Microsoft Excel Security Feature Bypass Vulnerability
Windows HTTP.sys Elevation of Privilege Vulnerability
Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability
Windows Client-Side Caching (CSC) Service Information Disclosure Vulnerability
Windows Hyper-V Information Disclosure Vulnerability
Windows Deployment Services Remote Code Execution Vulnerability
Label Studio vulnerable to full account takeover by chaining Stored XSS + IDOR in User Profile via custom_hotkeys field
Sangfor Operation and Maintenance Management System common.jsp unrestricted upload
OpenProject is Vulnerable to Insecure Direct Object Reference in Meetings
Showing 1 - 20 of 1,000+ results