Feb 11, 2026, 7:38 AM Modified Detection- 112686JSON Web Token Detected
- 112703JSON Web Token None Hashing Algorithm
- 113158Package Dependencies Detected
- 114129Generic Secret Disclosure
- 114450Mura/Masa CMS SQL Injection
- 115063AI Service Secret Disclosure
- 115121Versa Concerto 11.4.x < 12.1.2 Authentication Bypass
- 98008Web Application Firewall Detected
- 98099Publicly writable directory
New- 115127Kubernetes Kustomization Configuration Detected
- 115128Ivanti Endpoint Manager Mobile < 12.8.0.0 Remote Code Execution
- 115129Apache Configuration File Detected
- 115130Ansible Configuration File Detected
- 115131Apache Airflow Configuration File Detected
- 115132OpenCMS <= 18.0.0 Multiple Cross-Site Scripting
- 115133OpenCMS < 17.0.0 Multiple Vulnerabilities
- 115134OpenCMS 14.0.0 < 16.0.0 Multiple Vulnerabilities
- 115135OpenCMS <= 15.0 Arbitrary File Upload
- 115136Roundcube Webmail < 1.5.12 Multiple Vulnerabilities
- 115137Roundcube Webmail 1.6.x < 1.6.12 Multiple Vulnerabilities
- 115138Roundcube Webmail < 1.5.10 Remote Code Execution
- 115139Roundcube Webmail 1.6.x < 1.6.11 Remote Code Execution
- 115140Mura CMS < 10.0.580 Authentication Bypass
- 115141Nginx 1.3.0 < 1.29.5 SSL Upstream Injection
- 115142Ruby Config File Detected
|
Feb 3, 2026, 7:28 AM Modified Detection- 115121Versa Concerto 11.4.x < 12.1.2 Authentication Bypass
New- 115127Kubernetes Kustomization Configuration Detected
- 115128Ivanti Endpoint Manager Mobile < 12.8.0.0 Remote Code Execution
|
Jan 30, 2026, 10:11 AM New- 115123OpenClaw Gateway Dashboard Detected
- 115124Firebase Configuration Detected
- 115125Parameters YML Configuration Detected
- 115126CodeDeploy Appspec Configuration Detected
|
Jan 28, 2026, 7:47 AM Modified Detection- 115088PHP 8.5.x < 8.5.1 Multiple Vulnerabilities
- 115121Versa Concerto 11.4.x < 12.1.2 Authentication Bypass
- 115122Zimbra Collaboration 10.0.x < 10.0.18 / 10.1.x < 10.1.13 Local File Inclusion
- 115540Cookie Without SameSite Flag Detected
- 98062Cookie Set For Parent Domain
- 98063Cookie Without HttpOnly Flag Detected
- 98064Cookie Without Secure Flag Detected
- 98230PHP Unsupported Version
New- 115115Deep Chat Chatbot Detected
- 115116OpenAssistantGPT Chatbot Detected
- 115117SmarterMail < build 9413 Unrestricted File Upload
- 115119Redis Config File Detected
- 115120Vite < 4.5.11 / 5.0.x < 5.4.16 / 6.0.x < 6.0.13 / 6.1.x < 6.1.3 / 6.2.x < 6.2.4 Arbitrary File Read
|
Jan 21, 2026, 8:31 AM Modified Detection- 114129Generic Secret Disclosure
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
- 115088PHP 8.5.x < 8.5.1 Multiple Vulnerabilities
New- 115114SSH Known Hosts File Detected
- 115115Deep Chat Chatbot Detected
|
Jan 19, 2026, 10:37 AM Modified Detection- 114116XML Injection
- 115113Livewire 3.x < 3.6.4 Remote Code Execution
|
Jan 15, 2026, 8:54 AM Modified Detection- 114129Generic Secret Disclosure
- 114200Google Cloud Platform Detected
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
New- 115106Shibboleth SSO Open Redirect
- 115107Ambassador API Gateway Diagnostics Sensitive Information Disclosure
- 115108SAP NetWeaver ICM Info Sensitive Information Disclosure
- 115109JetBrains TeamCity Registration Enabled
- 115110JetBrains TeamCity Guest Access Detected
- 115111Private Key File Detected
- 115112Livewire Request Detected
|
Jan 8, 2026, 11:13 AM Modified Detection- 114129Generic Secret Disclosure
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
New- 115096Commvault CommandCenter < 11.36.60 Unauthorized API Access
- 115097Sitecore Debug Page Detected
- 115098Next.js Configuration File Detected
- 115099Symfony Conflicting Headers Information Disclosure
- 115100Joomla! 3.9.x < 5.4.2 Multiple Vulnerabilities
- 115101Joomla! 6.x < 6.0.2 Multiple Vulnerabilities
- 115102N8n < 2.2.2 Unauthenticated Forged Webhooks
- 115103N8n < 2.0.0 Multiple Vulnerabilities
- 115104N8n < 1.121.3 Arbitrary File Write
- 115105N8n < 1.121.0 Remote Code Execution (Ni8mare)
|
Jan 5, 2026, 11:33 AM Modified Detection- 112686JSON Web Token Detected
- 112703JSON Web Token None Hashing Algorithm
- 113029Microsoft IIS Unsupported Version
- 113158Package Dependencies Detected
- 113217Spring Framework < 5.2.20 / 5.3.x < 5.3.18 Remote Code Execution (Spring4Shell)
- 113943Disclosed Hong Kong Identity Number
- 114064MediaWiki Status Module Information Disclosure
- 114116XML Injection
- 114129Generic Secret Disclosure
- 114200Google Cloud Platform Detected
- 114276Database Connection String Disclosure
- 114450Mura/Masa CMS SQL Injection
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
- 115088PHP 8.5.x < 8.5.1 Multiple Vulnerabilities
- 115540Cookie Without SameSite Flag Detected
- 98008Web Application Firewall Detected
- 98062Cookie Set For Parent Domain
- 98063Cookie Without HttpOnly Flag Detected
- 98064Cookie Without Secure Flag Detected
- 98099Publicly writable directory
- 98228Drupal Unsupported Version
- 98230PHP Unsupported Version
- 98538Environment Configuration File Detected
New- 115076Gladinet Triofox < 16.7.10368.56560 Improper Access Control
- 115077Gladinet CentreStack < 16.4.10315.56368 Insecure Deserialization
- 115078Gladinet CentreStack / Triofox < 16.12.10420.56791 Hardcoded Credentials
- 115079Kubernetes Configuration Detected
- 115080Atlassian Jira 10.3.x < 10.3.13 XML External Entity Injection
- 115081Atlassian Jira 11.x < 11.2.0 XML External Entity Injection
- 115082Astro < 5.15.8 Reflected Cross-Site Scripting
- 115083FreeBPX < 16.0.92 Multiples Vulnerabilities
- 115084FreeBPX 17.0.x < 17.0.6 Multiples Vulnerabilities
- 115085FreeBPX < 16.0.44 Authentication Bypass
- 115086FreeBPX 17.0.x < 17.0.23 Authentication Bypass
- 115087PostgREST API Server Detected
- 115089PHP 8.4.x < 8.4.16 Multiple Vulnerabilities
- 115090PHP 8.3.x < 8.3.29 Multiple Vulnerabilities
- 115091PHP 8.2.x < 8.2.30 Multiple Vulnerabilities
- 115092Behat Configuration File Detected
- 115093PHP 8.1.x < 8.1.34 Multiple Vulnerabilities
- 115094Nexus Repository Anonymous Access
- 115095JFrog Artifactory Artifacts Repository Detected
|
Dec 17, 2025, 7:27 AM Modified Detection- 114129Generic Secret Disclosure
- 114276Database Connection String Disclosure
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
- 98538Environment Configuration File Detected
New- 115073Apache Tika < 3.2.2 XML External Entity
- 115075GeoServer < 2.25.6 / 2.26.x < 2.26.2 XML External Entity
- 115076Gladinet Triofox < 16.7.10368.56560 Improper Access Control
- 115077Gladinet CentreStack < 16.4.10315.56368 Insecure Deserialization
- 115078Gladinet CentreStack / Triofox < 16.12.10420.56791 Hardcoded Credentials
- 115079Kubernetes Configuration Detected
- 115080Atlassian Jira 10.3.x < 10.3.13 XML External Entity Injection
- 115081Atlassian Jira 11.x < 11.2.0 XML External Entity Injection
- 115082Astro < 5.15.8 Reflected Cross-Site Scripting
|
Dec 11, 2025, 9:34 AM Modified Detection- 113067Basic Authentication Bruteforced
- 114907Citrix NetScaler Gateway / ADC Memory Disclosure
- 115010Object-Relational Mapping (ORM) Leak
- 115069React Server Components 19.0 / 19.1.0 / 19.1.1 / 19.2.0 Remote Code Execution (React2Shell)
- 98209Drupal User Enumeration
New- 115072Adobe Experience Manager (AEM) Forms Login Panel Detected
- 115073Apache Tika < 3.2.2 XML External Entity
- 115074Drupal JSON:API User Enumeration
- 115075GeoServer < 2.25.6 / 2.26.x < 2.26.2 XML External Entity
|
Dec 8, 2025, 11:07 AM Modified Detection- 113150Google Cloud Service Account Private Key Disclosure (deprecated)
- 113164AWS Credentials Disclosure (deprecated)
- 115069React Server Components 19.0 / 19.1.0 / 19.1.1 / 19.2.0 Remote Code Execution (React2Shell)
New- 115070Adobe Experience Manager (AEM) < 6.5.23.0 XML External Entity
- 115071Apache 2.4.x < 2.4.66 Multiple Vulnerabilities
|
Dec 4, 2025, 11:11 AM Modified Detection- 113150Google Cloud Service Account Private Key Disclosure (deprecated)
- 113164AWS Credentials Disclosure (deprecated)
- 114129Generic Secret Disclosure
- 115010Object-Relational Mapping (ORM) Leak
- 115062Third-Party Service Secret Disclosure
- 115063AI Service Secret Disclosure
- 115069React Server Components 19.0 / 19.1.0 / 19.1.1 / 19.2.0 Remote Code Execution (React2Shell)
- 98112Cross-Site Request Forgery
New- 115047GFI KerioControl < 9.4.5 HTTP Response Splitting
- 115048Adobe Experience Manager (AEM) Login Panel Detected
- 115049Adobe Experience Manager (AEM) CRX Package Manager Panel Detected
- 115050Adobe Experience Manager (AEM) Sling Login Panel Detected
- 115051Sneeit Framework Plugin for WordPress < 8.4 Remote Code Execution
- 115052Adobe Experience Manager (AEM) CRX Namespace Editor Panel Detected
- 115053Adobe Experience Manager (AEM) QueryBuilder Feed Servlet Detected
- 115054Adobe Experience Manager (AEM) Custom Scripts Listing Detection
- 115055Adobe Experience Manager (AEM) CRX Search Endpoint Exposure
- 115056Adobe Experience Manager (AEM) Sling User Information Servlet Exposure
- 115057Adobe Experience Manager (AEM) Querybuilder Internal Path Read
- 115058Adobe Experience Manager (AEM) Debugging Client Libraries Exposure
- 115059Adobe Experience Manager (AEM) Felix Console Default Credentials
- 115060Adobe Experience Manager (AEM) CRX Content Explorer
- 115061Adobe Experience Manager (AEM) Dispatcher Bypass
- 115064Adobe Experience Manager (AEM) QueryBuilder JCR Role Disclosure
- 115065Adobe Experience Manager (AEM) QueryBuilder JCR Hashed Password Disclosure
- 115066Adobe Experience Manager (AEM) Merge Metadata Servlet Detected
- 115067Adobe Experience Manager (AEM) Unauthenticated Cache Purge
- 115068Adobe Experience Manager (AEM) Groovy Console
|
Nov 24, 2025, 9:42 AM Modified Detection- 113058Apache 2.4.10 < 2.4.44 Source Code Disclosure
- 113448Microsoft Access Database Detected
- 114129Generic Secret Disclosure
- 114947User Enumeration
- 98115SQL Injection
New- 115033Drupal 11.2.x < 11.2.8 Multiple Vulnerabilities
- 115034Drupal 11.0.x < 11.1.9 Multiple Vulnerabilities
- 115035Drupal 10.5.x < 10.5.6 Multiple Vulnerabilities
- 115036Drupal 8.0.x < 10.4.9 Multiple Vulnerabilities
- 115041Liferay Portal API Explorer Detected
- 115042Wazuh 4.4x < 4.9.1 Remote Code Execution
- 115043Liferay Portal JSON Web Services Detected
- 115044Liferay Portal License Manager Detected
- 115045Oracle Identity Manager < 12.2.1.4.0 / < 14.1.2.1.0 Remote Code Execution
- 115046Liferay Portal GraphQL Schema Detected
|
Nov 17, 2025, 10:10 AM Modified Detection- 112685Symfony Secret Fragments Remote Code Execution
- 113058Apache 2.4.10 < 2.4.44 Source Code Disclosure
- 113067Basic Authentication Bruteforced
- 113150Google Cloud Service Account Private Key Disclosure (deprecated)
- 113158Package Dependencies Detected
- 113164AWS Credentials Disclosure (deprecated)
- 114128External Backend API Detected
- 114129Generic Secret Disclosure
- 114276Database Connection String Disclosure
- 114604Drupal 11.1.x < 11.1.3 Multiple Vulnerabilities
- 114605Drupal 11.0.x < 11.0.12 Multiple Vulnerabilities
- 114606Drupal 10.4.x < 10.4.3 Multiple Vulnerabilities
- 114607Drupal 8.0.x < 10.3.13 Multiple Vulnerabilities
- 114947User Enumeration
- 115010Object-Relational Mapping (ORM) Leak
- 115027Lucee Administration Panel Login Form Detected
- 115029Lucee Unset Credentials
- 115040Fortinet FortiWeb Authentication Bypass
- 98146Password Submitted Using GET Method
New- 115032Lucee < 6.0.1.59 Remote Code Execution
- 115033Drupal 11.2.x < 11.2.8 Multiple Vulnerabilities
- 115034Drupal 11.0.x < 11.1.9 Multiple Vulnerabilities
- 115035Drupal 10.5.x < 10.5.6 Multiple Vulnerabilities
- 115036Drupal 8.0.x < 10.4.9 Multiple Vulnerabilities
- 115037Telerik UI for ASP.NET AJAX Unsafe Reflection
- 115038Lucee < 5.3.12.1 Remote Code Execution
- 115039Lucee 5.4.x < 5.4.3.2 Remote Code Execution
|
Nov 11, 2025, 3:15 PM |
Nov 10, 2025, 12:02 PM Modified Detection- 113900Cross-Site Request Forgery Token Validation Bypass
- 114262Request URL Override
- 114947User Enumeration
- 115010Object-Relational Mapping (ORM) Leak
- 115027Lucee Administration Panel Login Form Detected
- 98146Password Submitted Using GET Method
New- 115028Lucee Default Credentials
- 115030Gladinet CentreStack/Triofox < 16.10.10408.56683 Local File Inclusion
- 115031DotNetNuke < 10.1.1 Unrestricted File Upload
- 155029Lucee Unset Credentials
|
Nov 4, 2025, 7:49 AM Modified Detection- 113217Spring Framework < 5.2.20 / 5.3.x < 5.3.18 Remote Code Execution (Spring4Shell)
- 114899Bootstrap 4.x <= 4.6.2 Cross-Site Scripting (deprecated)
- 115006Custom HTTP Header Detected
- 98000Scan Information
- 98611Error Message
- 98646.DS_Store File Detected
New- 115013Atlassian Jira 9.12.x < 9.12.28 Path Traversal
- 115014Atlassian Jira 10.3.x < 10.3.12 Path Traversal
- 115015Atlassian Jira 11.x < 11.1.0 Path Traversal
- 115019Adobe Commerce / Magento Insecure Deserialization (SessionReaper)
- 115020Squid < 7.2 Information Disclosure
- 115021Apache Tomcat 11.0.0-M1 < 11.0.12 Denial of Service
- 115022Apache Tomcat 10.1.0-M1 < 10.1.47 Denial of Service
- 115023Apache Tomcat 9.0.0-M1 < 9.0.110 Denial of Service
- 115024Apache Tomcat 11.0.0-M1 < 11.0.11 Multiple Vulnerabilities
- 115025Apache Tomcat 10.1.0-M1 < 10.1.45 Multiple Vulnerabilities
- 115026Apache Tomcat 9.0.0-M1 < 9.0.109 Multiple Vulnerabilities
|
Oct 24, 2025, 11:43 AM Modified Detection- 115006Custom HTTP Header Detected
- 115010Object-Relational Mapping (ORM) Leak
New- 115011Authentik < 2024.6.5 Authentication Bypass
- 115012Authentik 2024.8.x < 2024.8.3 Authentication Bypass
- 115013Atlassian Jira 9.12.x < 9.12.28 Path Traversal
- 115014Atlassian Jira 10.3.x < 10.3.12 Path Traversal
- 115015Atlassian Jira 11.x < 11.1.0 Path Traversal
- 115016Atlassian Confluence 2.x < 8.5.25 Denial of Service
- 115017Atlassian Confluence 9.2.x < 9.2.7 Denial of Service
- 115018Atlassian Confluence 10.x < 10.0.2 Denial of Service
- 115019Adobe Commerce / Magento Insecure Deserialization (SessionReaper)
|
Oct 21, 2025, 6:31 AM Modified Detection- 112544HTTP to HTTPS Redirect Not Enabled
- 113158Package Dependencies Detected
- 114129Generic Secret Disclosure
- 114146Subdomain Takeover
- 115006Custom HTTP Header Detected
- 115010Object-Relational Mapping (ORM) Leak
New- 114999Grafana 8.0.x < 8.0.7 / 8.1.x < 8.1.8 / 8.2.x < 8.2.7 / 8.3.x < 8.3.1 Path Traversal
- 115003Fortra GoAnywhere MFT License Servlet Deserialization Vulnerability
- 115004Zimbra Collaboration 10.1.x < 10.1.5 Stored Cross-Site Scripting
- 115005Zimbra Collaboration 10.0.x < 10.0.13 Stored Cross-Site Scripting
- 115007Node.js Express DevMode Enabled
- 115008Jenkins Sidepanel Unauthorized Agent/Queue Exposure
- 115009Discourse < 3.3.3 Backup Disclosure
|
Oct 7, 2025, 6:56 AM Modified Detection- 114129Generic Secret Disclosure
- 114923Microsoft SharePoint Remote Code Execution
- 115002Netdisco Unauthenticated Access
New- 114980TRUFusion Entreprise Sensitive Data Exposure
- 114986Apache Airflow Unauthenticated Access
- 114987Grafana < 11.3.8 Multiples Vulnerabilities
- 114988Grafana 11.4.x < 11.4.6 Multiples Vulnerabilities
- 114989Grafana 11.5.x < 11.5.6 Multiples Vulnerabilities
- 114990Grafana 11.6.x < 11.6.3 Multiples Vulnerabilities
- 114991Grafana 12.0.x < 12.0.2 Multiples Vulnerabilities
- 114992Grafana 12.1.x < 12.1.2 Multiples Vulnerabilities
- 114993Grafana < 11.6.2 Improper Input Validation
- 114994Grafana < 10.4.17 Improper Authorization
- 114995Grafana 11.2.x < 11.2.8 Improper Authorization
- 114996Grafana 11.3.x < 11.3.5 Improper Authorization
- 114997Grafana 11.4.x < 11.4.3 Improper Authorization
- 114998Grafana 11.5.x < 11.5.3 Improper Authorization
- 114999Grafana 8.0.x < 8.0.7 / 8.1.x < 8.1.8 / 8.2.x < 8.2.7 / 8.3.x < 8.3.1 Path Traversal
- 115000Dell UnityVSA < 5.5.1.0 Remote Code Execution
- 115001Intercom Chatbot Misconfiguration
|
Oct 3, 2025, 8:44 AM Modified Detection- 114129Generic Secret Disclosure
New- 114975Anteon Unauthenticated Access
- 114976GoCD Unauthenticated Access
- 114977ProjectSend < r1720 Improper Authorization
- 114978pyLoad < 0.5.0b3.dev76 Improper Access Control
- 114979pyLoad Default Credentials
- 114980TRUFusion Entreprise Sensitive Data Exposure
- 114981Joomla! 5.x < 5.3.4 Multiple Vulnerabilities
- 114982Joomla! 4.x < 4.4.14 Multiple Vulnerabilities
- 114983Zyxel < 5.38 Directory Traversal
- 114984Apache Kylin 2.3.x < 3.1.0 Command Injection
- 114985Hitachi Pentaho Business Analytics Server 8.3.x < 9.3.0.2 / 9.4.x < 9.4.0.1 Remote Code Execution
- 114986Apache Airflow Unauthenticated Access
|
Sep 26, 2025, 9:14 AM Modified Detection- 112544HTTP to HTTPS Redirect Not Enabled
- 98201Drupal User Registration Form Detected
- 98202WordPress User Registration Form Detected
- 98205Joomla! User Registration Form Detected
New- 114966Personal Identifying Information (PII) Fields Detected
- 114967Jenkins User Registration Form Detected
- 114968Jenkins Unauthenticated Access
- 114969H2O Flow Unauthenticated Access
- 114970cAdvisor Unauthenticated Access
- 114971File Browser Unauthenticated Access
- 114972Tiny File Manager Unauthenticated Access
- 114973Tiny File Manager Default Credentials
- 114974Clickhouse API Unauthenticated Access
|
Sep 19, 2025, 6:33 AM Modified Detection- 112686JSON Web Token Detected
- 112703JSON Web Token None Hashing Algorithm
- 113150Google Cloud Service Account Private Key Disclosure (deprecated)
- 113164AWS Credentials Disclosure (deprecated)
- 114116XML Injection
- 114129Generic Secret Disclosure
- 114276Database Connection String Disclosure
- 114502Cross-Site WebSocket Hijacking
- 114947User Enumeration
- 98008Web Application Firewall Detected
- 98091Mixed Resource Detection
- 98115SQL Injection
- 98611Error Message
New- 114962Lunary Detected
- 114963Flowise < 3.0.6 Multiples Vulnerabilities
- 114964Jenkins Cross-Site WebSocket Hijacking
- 114965MCP Server Tools Detected
|
Sep 12, 2025, 6:27 AM Modified Detection- 113219Insecure Redirect Chain
- 114923Microsoft SharePoint Remote Code Execution
New- 114961AIOHTTP < 3.9.2 Directory Traversal
|
Sep 9, 2025, 6:56 AM New- 114955FreeBPX < 15.0.66 Authentication Bypass
- 114956FreeBPX < 16.0.89 Authentication Bypass
- 114957FreeBPX < 17.0.3 Authentication Bypass
- 114958Nuxt Icon < 1.4.5 Server-Side Request Forgery
- 114959LLM Detected
- 114960Cacti 1.3.x-DEV Remote Code Execution
|
Sep 3, 2025, 2:37 PM Modified Detection- 113059OPcache UI Detected
- 113943Disclosed Hong Kong Identity Number
- 114129Generic Secret Disclosure
- 114232PHP Development Server < 7.4.22 Source Disclosure
- 114247Authentication Check Pattern Found in Unauthenticated Browser
- 114450Mura/Masa CMS SQL Injection
- 114796Content Security Policy Missing 'Report-To'
- 114867GraphQL Query Length Not Limited
- 114923Microsoft SharePoint Remote Code Execution
- 114947User Enumeration
- 98008Web Application Firewall Detected
- 98054Unvalidated Redirection
- 98101Response Splitting
- 98779Source Code Passive Disclosure
New- 114946Unauthenticated Cache Purge
- 114948UUID/GUID Version 1 Detected
- 114949Langflow < 1.5.1 Privilege Escalation
- 114950CrushFTP < 10.8.5 / 11.x < 11.3.4_23 Race Condition
- 114951Apache Tomcat 11.0.0-M1 < 11.0.10 Denial of Service
- 114952Apache Tomcat 10.1.0-M1 < 10.1.44 Denial of Service
- 114953Apache Tomcat 9.0.0-M1 < 9.0.108 Denial of Service
- 114954Nginx 0.7.22 < 1.29.1 Buffer Over-read
- 114955FreeBPX < 15.0.66 Authentication Bypass
- 114956FreeBPX < 16.0.89 Authentication Bypass
- 114957FreeBPX < 17.0.3 Authentication Bypass
|
Aug 19, 2025, 1:13 PM |
Aug 13, 2025, 5:06 PM New- 114944Liferay Portal 7.4.x < 7.4.3.132 Cross-Site Scripting
- 114945Liferay Portal 7.4.x < 7.4.3.133 Cross-Site Scripting
|
Aug 11, 2025, 7:20 AM Modified Detection- 114232PHP Development Server < 7.4.22 Source Disclosure
- 114899Bootstrap 4.x <= 4.6.2 Cross-Site Scripting (deprecated)
New- 114938ClearML Detected
- 114939ClearML < 1.16.0 Unauthenticated File Access
- 114940NVIDIA Triton Detected
- 114941NVIDIA Triton < 25.07 Multiple Vulnerabilities
- 114942Active! Mail < 6.60.05008562 Remote Code Execution
- 114943Rejetto HTTP File Server < 2.3c Remote Code Execution
|
Aug 5, 2025, 10:26 AM Modified Detection- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114899Bootstrap 4.x <= 4.6.2 Cross-Site Scripting (deprecated)
New- 114928MCP Server Prompt Injection
- 114931Squid < 6.4 Remote Code Execution
- 114932BentoML 1.4.x < 1.4.19 Server-Side Request Forgery
- 114933BentoML 1.x < 1.4.8 Insecure Deserialization
- 114934BentoML 1.3.4 < 1.4.3 Insecure Deserialization
- 114935Advantive Veracore < 2025.1.1.3 SQL Injection
- 114936ZenML < 0.57.0 Account Takeover
- 114937ZenML Insufficient Session Expiration
|
Jul 31, 2025, 6:54 AM Modified Detection- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
|
Jul 28, 2025, 2:16 PM Modified Detection- 113258OpenAPI Permissive Input Validation
New- 114925Wing FTP < 7.4.4 Remote Code Execution
- 114926Lighthouse Studio < 9.16.14 Remote Code Execution
|
Jul 28, 2025, 6:56 AM Modified Detection- 114129Generic Secret Disclosure
- 114901Bootstrap 3.2.x <= 3.4.1 Cross-Site Scripting
New- 114925Wing FTP < 7.4.4 Remote Code Execution
|
Jul 24, 2025, 9:01 AM Modified Detection- 113310Blind XPath Injection (differential analysis)
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114900Bootstrap < 4.0.0 Multiples Cross-Site Scripting
- 114901Bootstrap 3.2.x <= 3.4.1 Cross-Site Scripting
- 114902Bootstrap Unsupported Version
- 114923Microsoft SharePoint Remote Code Execution
New- 114922Fortinet FortiWeb Fabric Connector SQL Injection
- 114924Apache 2.4.64 RewriteCond expr Vulnerability
|
Jul 22, 2025, 6:55 AM Modified Detection- 114129Generic Secret Disclosure
- 114276Database Connection String Disclosure
- 114790MCP Server Detected
|
Jul 21, 2025, 3:13 AM Modified Detection- 114029Well-Known URIs Detected
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114900Bootstrap < 4.0.0 Multiples Cross-Site Scripting
- 114902Bootstrap Unsupported Version
- 114907Citrix NetScaler Gateway / ADC Memory Disclosure
|
Jul 18, 2025, 9:28 AM Modified Detection- 114029Well-Known URIs Detected
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114900Bootstrap < 4.0.0 Multiples Cross-Site Scripting
- 114902Bootstrap Unsupported Version
- 114907Citrix NetScaler Gateway / ADC Memory Disclosure
New- 114908PHP 8.4.x < 8.4.10 Multiple Vulnerabilities
- 114909PHP 8.3.x < 8.3.23 Multiple Vulnerabilities
- 114910PHP 8.2.x < 8.2.29 Multiple Vulnerabilities
- 114911PHP 8.1.x < 8.1.33 Multiple Vulnerabilities
- 114913XWiki User Registration Remote Code Execution
- 114914Apache Tomcat 11.0.0-M1 < 11.0.9 Multiple Vulnerabilities
- 114915Apache Tomcat 10.1.0-M1 < 10.1.43 Multiple Vulnerabilities
- 114916Apache Tomcat 9.0.0-M1 < 9.0.107 Multiple Vulnerabilities
- 114917Apache 2.4.x < 2.4.64 Multiple Vulnerabilities
- 114918OAuth Dynamic Client Registration Detected
- 114919OAuth Dynamic Client Registration Permissive Redirect URI
- 114920OAuth Dynamic Client Registration Permissive Metadata Field
- 114921MCP Server Tool Poisoning
|
Jul 10, 2025, 5:39 AM Modified Detection- 114029Well-Known URIs Detected
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114790MCP Server Detected
- 114900Bootstrap < 4.0.0 Multiples Cross-Site Scripting
- 114902Bootstrap Unsupported Version
- 114907Citrix NetScaler Gateway / ADC Memory Disclosure
- 98109DOM-based Cross-Site Scripting (XSS)
New- 114908PHP 8.4.x < 8.4.10 Multiple Vulnerabilities
- 114909PHP 8.3.x < 8.3.23 Multiple Vulnerabilities
- 114910PHP 8.2.x < 8.2.29 Multiple Vulnerabilities
- 114911PHP 8.1.x < 8.1.33 Multiple Vulnerabilities
- 114912XWiki Platform SolrSearch Macro Remote Code Execution
|
Jul 4, 2025, 6:46 AM New- 114906MCP Inspector < 0.14.1 Remote Code Execution
|
Jul 3, 2025, 7:10 AM Modified Detection- 112439Server-Side Request Forgery
- 113057Microsoft Exchange Server Autodiscover Cross-Site Scripting
- 113369BackupBuddy Plugin for WordPress < 8.7.5 Arbitrary File Read
- 114116XML Injection
- 114129Generic Secret Disclosure
- 114313Flowise Chatflow Detected
- 114590Microsoft Exchange Autodiscover V2 User Enumeration
- 114655SimpleHelp Detected
- 114885MCP Server SSE DNS Rebinding
- 114899Bootstrap 4.x <= 4.6.2 Cross-Site Scripting (deprecated)
- 114900Bootstrap < 4.0.0 Multiples Cross-Site Scripting
- 114901Bootstrap 3.2.x <= 3.4.1 Cross-Site Scripting
- 114902Bootstrap Unsupported Version
New- 114903Microsoft Exchange Admin Center Detected
- 114904DocsGPT Detected
- 114905DocsGPT 0.8.1 < 0.13.0 Unauthenticated Remote Code Execution
|
Jun 24, 2025, 7:32 AM Modified Detection- 114129Generic Secret Disclosure
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114885MCP Server SSE DNS Rebinding
New- 114886Apache Tomcat 11.0.0-M1 < 11.0.8 Multiple Vulnerabilities
- 114887Apache Tomcat 10.1.0-M1 < 10.1.42 Multiple Vulnerabilities
- 114888Apache Tomcat 9.0.0-M1 < 9.0.106 Multiple Vulnerabilities
- 114889Sitecore XM/XP/XC Hardcoded Credentials
- 114890Moodle 4.1.x < 4.1.19 Multiple Vulnerabilities
- 114891Moodle 4.4.x < 4.4.9 Multiple Vulnerabilities
- 114892Moodle 4.5.x < 4.5.5 Multiple Vulnerabilities
- 114893Moodle 5.0.x < 5.0.1 Multiple Vulnerabilities
- 114894Moodle 4.1.x < 4.1.18 Multiple Vulnerabilities
- 114895Moodle 4.3.x < 4.3.12 Multiple Vulnerabilities
- 114896Moodle 4.4.x < 4.4.8 Multiple Vulnerabilities
- 114897Moodle 4.5.x < 4.5.4 Multiple Vulnerabilities
- 114898Moodle 5.x < 5.0.1 Reflected Cross-Site Scripting
|
Jun 20, 2025, 6:32 AM Modified Detection- 112290Apache Tomcat 9.0.0.M1 < 9.0.10 Multiple Vulnerabilities
- 113900Cross-Site Request Forgery Token Validation Bypass
- 114791MCP Server Unauthenticated Access
- 114885MCP Server SSE DNS Rebinding
New- 114886Apache Tomcat 11.0.0-M1 < 11.0.8 Multiple Vulnerabilities
- 114887Apache Tomcat 10.1.0-M1 < 10.1.42 Multiple Vulnerabilities
- 114888Apache Tomcat 9.0.0-M1 < 9.0.106 Multiple Vulnerabilities
|
Jun 17, 2025, 6:23 AM Modified Detection- 113195Spring Boot Actuator Detected
- 114790MCP Server Detected
- 114791MCP Server Unauthenticated Access
- 98074Backup File
New- 114884FastJSON Object Deserialization
|
Jun 11, 2025, 8:33 AM Modified Detection- 114790MCP Server Detected
- 114791MCP Server Unauthenticated Access
- 114867GraphQL Query Length Not Limited
New- 114882GraphQL Unauthenticated Mutation Detected
- 114883Llms.txt File Detected
|
Jun 6, 2025, 6:29 AM Modified Detection- 114784Citrix Netscaler 14.1.x < 14.1-25.53 Information Disclosure
New- 114880Intercom Chatbot Detected
- 114881Drift Chatbot Detected
|
Jun 4, 2025, 6:29 AM Modified Detection- 112907GraphQL Interface Detected
- 113906Advanced Custom Fields for WordPress 6.0.x < 6.1.6 Cross-Site Scripting
- 113908Advanced Custom Fields Pro for WordPress 6.0.x < 6.1.6 Cross-Site Scripting
- 114313Flowise Chatflow Detected
- 114790MCP Server Detected
- 114791MCP Server Unauthenticated Access
- 114867GraphQL Query Length Not Limited
- 98008Web Application Firewall Detected
New- 114804Grafana < 10.4.19 Improper Access Control
- 114805Grafana 11.2.x < 11.2.10 Improper Access Control
- 114806Grafana 11.3.x < 11.3.7 Improper Access Control
- 114807Grafana 11.4.x < 11.4.5 Improper Access Control
- 114808Grafana 11.5.x < 11.5.5 Improper Access Control
- 114809Grafana 11.6.x < 11.6.2 Improper Access Control
- 114810Grafana 12.0.x < 12.0.1 Improper Access Control
- 114811Grafana < 10.4.18 Cross-site Scripting
- 114812Grafana 11.2.x < 11.2.9 Cross-site Scripting
- 114813Grafana 11.3.x < 11.3.6 Cross-site Scripting
- 114814Grafana 11.4.x < 11.4.4 Cross-site Scripting
- 114815Grafana 11.5.x < 11.5.4 Cross-site Scripting
- 114816Grafana 11.6.x < 11.6.1 Cross-site Scripting
- 114817Grafana 11.1.x < 11.2.8+security-01 Cross-site Scripting
- 114818Grafana 11.1.x < 11.3.5+security-01 Cross-site Scripting
- 114819Grafana 11.1.x < 11.4.3+security-01 Cross-site Scripting
- 114820Grafana 11.1.x < 11.5.3+security-01 Cross-site Scripting
- 114821Grafana 11.1.x < 11.6.0+security-01 Cross-site Scripting
- 114822Grafana < 10.4.15 Exposure Of Sensitive Information To An Unauthorized Actor
- 114823Grafana < 11.0.11 Exposure Of Sensitive Information To An Unauthorized Actor
- 114824Grafana < 11.1.11 Exposure Of Sensitive Information To An Unauthorized Actor
- 114825Grafana < 11.2.6 Exposure Of Sensitive Information To An Unauthorized Actor
- 114826Grafana < 11.3.3 Exposure Of Sensitive Information To An Unauthorized Actor
- 114827Grafana < 11.4.1 Exposure Of Sensitive Information To An Unauthorized Actor
- 114828Grafana 11.2.x < 11.2.3+security-01 Incorrect Privilege Assignment
- 114829Grafana 11.3.x < 11.3.0+security-01 Incorrect Privilege Assignment
- 114830Grafana 10.3.x < 10.3.10 Multiple Vulnerabilities
- 114831Grafana 10.4.x < 10.4.9 Multiple Vulnerabilities
- 114832Grafana 11.0.x < 11.0.5 Multiple Vulnerabilities
- 114833Grafana 11.1.x < 11.1.6 Multiple Vulnerabilities
- 114834Grafana 11.2.x < 11.2.1 Multiple Vulnerabilities
- 114835Grafana 9.5.x < 9.5.18 Authorization Bypass Through User-controlled Key
- 114836Grafana 10.0.x < 10.0.13 Authorization Bypass Through User-controlled Key
- 114837Grafana 10.1.x < 10.1.9 Authorization Bypass Through User-controlled Key
- 114838Grafana 10.2.x < 10.2.6 Authorization Bypass Through User-controlled Key
- 114839Grafana 10.3.x < 10.3.5 Authorization Bypass Through User-controlled Key
- 114840Grafana 8.5.x < 9.5.7 Improper Privilege Management
- 114841Grafana 10.0.x < 10.0.12 Improper Privilege Management
- 114842Grafana 10.1.x < 10.1.8 Improper Privilege Management
- 114843Grafana 10.2.x < 10.2.5 Improper Privilege Management
- 114844Grafana 10.3.x < 10.3.4 Improper Privilege Management
- 114845Grafana 9.5.x < 9.5.16 Incorrect Authorization
- 114846Grafana 10.0.x < 10.0.11 Incorrect Authorization
- 114847Grafana 10.1.x < 10.1.7 Incorrect Authorization
- 114848Grafana 10.2.x < 10.2.4 Incorrect Authorization
- 114849Grafana 10.3.x < 10.3.3 Incorrect Authorization
- 114850Grafana < 8.5.26 Multiple Vulnerabilities
- 114851Grafana < 9.2.19 Multiple Vulnerabilities
- 114852Grafana < 9.3.15 Multiple Vulnerabilities
- 114853Grafana < 9.4.12 Multiple Vulnerabilities
- 114854Grafana 9.5.x < 9.5.3 Multiple Vulnerabilities
- 114855Grafana 9.2.x < 9.2.17 Exposure Of Sensitive Information To An Unauthorized Actor
- 114856Grafana 9.3.x < 9.3.13 Exposure Of Sensitive Information To An Unauthorized Actor
- 114857Grafana 9.4.x < 9.4.9 Exposure Of Sensitive Information To An Unauthorized Actor
- 114858Grafana < 8.5.22 Cross-site Scripting
- 114859Grafana < 9.2.15 Cross-site Scripting
- 114860Grafana < 9.3.11 Cross-site Scripting
- 114861Grafana 8.5.x < 8.5.21 Multiple Vulnerabilities
- 114862Grafana 9.2.x < 9.2.13 Multiple Vulnerabilities
- 114863Grafana 9.3.x < 9.3.8 Multiple Vulnerabilities
- 114864Grafana < 9.2.10 Cross-site Scripting
- 114865Grafana 9.3.x < 9.3.4 Cross-site Scripting
- 114866GraphQL Debug Mode Enabled
- 114868GraphQL Alias Overloading Enabled
- 114869vBulletin 5.0.x < 6.0.4 Remote Code Execution
- 114870Langflow Chatbot Detected
- 114871Botpress Chatbot Detected
- 114872Voiceflow Chatbot Detected
- 114873Azure Bot Framework Chatbot Detected
- 114874Typebot Chatbot Detected
- 114875Apache Tomcat 11.0.0-M1 < 11.0.7 CGI Security Constraint Bypass
- 114876Apache Tomcat 10.1.0-M1 < 10.1.41 CGI Security Constraint Bypass
- 114877Apache Tomcat 9.0.0-M1 < 9.0.105 CGI Security Constraint Bypass
- 114878Dialogflow Chatbot Detected
- 114879Livechat Chatbot Detected
|
May 27, 2025, 6:31 AM Modified Detection- 114790MCP Server Detected
- 114791MCP Server Unauthenticated Access
- 114795FortiOS 7.0.x < 7.0.13 / 7.2.x < 7.2.6 / 7.4.x < 7.4.2 Remote Code Execution
|
May 23, 2025, 5:35 AM Modified Detection- 113217Spring Framework < 5.2.20 / 5.3.x < 5.3.18 Remote Code Execution (Spring4Shell)
- 114699Moodle 4.3.x < 4.3.10 Multiple Vulnerabilities
- 114784Citrix Netscaler 14.1.x < 14.1-25.53 Information Disclosure
New- 114794Ivanti Endpoint Manager Mobile < 11.12.0.5 / < 12.3.0.2 / < 12.4.0.2 / < 12.5.0.1 Authentication Bypass
- 114798Label Studio < 1.18.0 Reflected Cross-Site Scripting
- 114803MCP Client Configuration File Detected
|
May 22, 2025, 7:05 AM Modified Detection- 114006Web Cache Poisoning Denial of Service
- 114434Flask Weak Secret Key
- 114790MCP Server Detected
- 114791MCP Server Unauthenticated Access
- 114795FortiOS 7.0.x < 7.0.13 / 7.2.x < 7.2.6 / 7.4.x < 7.4.2 Remote Code Execution
- 114796Content Security Policy Missing 'Report-To'
- 98008Web Application Firewall Detected
- 98080Form-based File Upload
New- 114792Agent2Agent (A2A) Card Detected
- 114793MCP Manifest Detected
- 114794Ivanti Endpoint Manager Mobile < 11.12.0.5 / < 12.3.0.2 / < 12.4.0.2 / < 12.5.0.1 Authentication Bypass
- 114797MCP Inspector Detected
- 114798Label Studio < 1.18.0 Reflected Cross-Site Scripting
- 114799SonicWall SMA < 10.2.1.14-75sv Unauthenticated Arbitrary File Read
- 114800Atlassian Jira < 9.12.20 Privilege Escalation
- 114801Atlassian Jira 10.3.x < 10.3.5 Privilege Escalation
- 114802Atlassian Jira 10.5.x < 10.5.1 Privilege Escalation
|
