Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including version 2.5.22 allows auth...
A user with the appropriate authorization can create any number of user accounts via an API endpoint using a POST request. There are no qu...
When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other int...
A vulnerability has been found in Frappe LMS 2.35.0. The affected element is an unknown function of the file /courses/ of the component Unpublished...
DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization ...
Claude Code is an agentic coding tool. Versions below 1.0.120 failed to account for symlinks when checking permission deny rules. If a user explici...
HCL MyXalytics 6.6. product is affected by Use of Vulnerable/Outdated Versions Vulnerability
The Backup Bolt plugin for WordPress is vulnerable to arbitrary file downloads and backup location writes in all versions up to, and including, 1.4...
A regular Zabbix user can search other users in their user group via Zabbix API by select fields the user does not have access to view. This allows...
CVE-2025-54087 is a server-side request forgery vulnerability in Secure Access prior to version 14.10. Attackers with administrative privileges can...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
