CVEs Published

Latest Blog Articles

CWE 4.14 is available
2024-03-01
CWE 4.14 is available

MITRE has released version 4.14 of the Common Weakness Enumeration (CWE) with a new weakness for "Hardware Micro Architectures", a view for "ISA/IEC 62443 Requirements", and new demonstrative examples from "HACK@DAC". Changes in 4.14 New Waknesses: CWE-1420: Exposure of Sensitive Information du...

Read more
What's new in SecDB 24.2
2024-02-29
What's new in SecDB 24.2

This new version of SecDB brings new features and improvements. Polished UI, improved support for EPSS, Web & Social references (from Reddit and Mastodon) in CVEs, new Security Advisories and sections (NASL & NVT and Packages), and much more. Improved the EPSS (Exploit Prediction Scoring System) s...

Read more
What's new in SecDB 22.11 - EPSS, Packages & Software, new Security Advisory feeds... and more!
2022-11-30
What's new in SecDB 22.11 - EPSS, Packages & Software, new Security Advisory feeds... and more!

Notable changes in SecDB Introduced the Exploit Prediction Scoring System (EPSS) Added the Exploit Prediction Scoring System (EPSS) score in all tables and CVE pages. The Exploit Prediction Scoring System (EPSS) is an open, data-driven effort for estimating the likelihood (probability) that a sof...

Read more

Latest Vulnerabilities

CVE-2024-4072
2024-04-23

CVSS3 3.5 CVSS2 4 CWE-79

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been classified as proble...

CVE-2024-4073
2024-04-23

CVSS3 3.5 CVSS2 4 CWE-79

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been declared as problema...

CVE-2024-4074
2024-04-23

CVSS3 3.5 CVSS2 4 CWE-79

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. It has been rated as problematic...

CVE-2024-4075
2024-04-23

CVSS3 3.5 CVSS2 4 CWE-79

A vulnerability classified as problematic has been found in Kashipara Online Furniture Shopping Ecommerce Website 1.0. T...

CVE-2024-4040
2024-04-22

CVSS3 9.8 CWE-1336

A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms all...

CVE-2024-27282
2024-04-23

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new ...

CVE-2024-27536
2024-04-23

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Fu...

CVE-2024-27537
2024-04-23

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Fu...

CVE-2024-30886
2024-04-23

A stored cross-site scripting (XSS) vulnerability in the remotelink function of HadSky v7.6.3 allows attackers to execut...

CVE-2024-31616
2024-04-23

An issue discovered in RG-RSR10-01G-T(W)-S and RG-RSR10-01G-T(WA)-S routers with firmware version RSR10-01G-T-S_RSR_3.0(...

Loading...