Jump to Recent Initial Access Activity
7 new indices
NCSC CVEs
Nationaal Cyber Security Centrum cves are official notifications released by the Nationaal Cyber Security Centrum to address security vulnerabilities and updates. These cves provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
NCSC Advisories
Nationaal Cyber Security Centrum advisories are official notifications released by the Nationaal Cyber Security Centrum to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
Seebug Vulnerabilities
Seebug Vulnerabilities is an archive of public exploits curated by Knownsec.
VulnCheck Security Advisories
VulnCheck Security Advisories are official advisories released by VulnCheck to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
Changelog for VC Exploits Data
Provides a history of the changes made to an exploits record.
Browse the exploits-changelog index
Fortinet Labs Threat Encyclopedia
The Fortinet Labs Threat Encyclopedia is a list of threats identified by Fortinet.
PTC Security Advisories
PTC Security Advisories are official notifications released by PTC to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
Recent Initial Access activity
Four-Faith Hidden Creds and Information Leak was added on Oct, 8 and is found in 2 products.
View more detail on CVE-2024-9643
Linear eMerge e3-Series forgot_password Command Injection was added on Oct, 1 and is found in 1 product.
View more detail on CVE-2024-9441
SPIP Bigup Plugin Remote Code Execution was added on Sep, 11 and is found in 1 product.
View more detail on CVE-2024-8517
Progress WhatsUp Gold SQL Injection was added on Sep, 19 and is found in 1 product.
View more detail on CVE-2024-6670
Zyxel NAS Auth Bypass and Configuration Leak was added on Sep, 11 and is found in 2 products.
View more detail on CVE-2024-6342
Hash Form WordPress Plugin Nonce Exposure RCE was added on Oct, 6 and is found in 1 product.
View more detail on CVE-2024-5084
Zimbra RCPT TO Command Injection was added on Sep, 29 and is found in 1 product.
View more detail on CVE-2024-45519
Apache OFBiz Stats Screen SSRF was added on Sep, 17 and is found in 1 product.
View more detail on CVE-2024-45507
Spring Cloud Data Flow Remote Code Execution was added on Sep, 25 and is found in 1 product.
View more detail on CVE-2024-37084
ssssssss Spider Flow Command Injection was added on Sep, 11 and is found in 1 product.
View more detail on CVE-2024-0195
Apache Solr Configuration Backup RCE was added on Sep, 24 and is found in 1 product.
View more detail on CVE-2023-50386
QNAP QTS and QuTS hero Unauthenticated Remote Code Execution in quick.cgi was added on Oct, 2 and is found in 3 products.
View more detail on CVE-2023-47218
Apache RocketMQ Arbitrary File Write was added on Oct, 3 and is found in 1 product.
View more detail on CVE-2023-37582
NocoDB Path Traversal was added on Sep, 26 and is found in 1 product.
View more detail on CVE-2023-35843
Jorani Log Poisoning RCE was added on Oct, 1 and is found in 1 product.
View more detail on CVE-2023-26469
Sudo Heap-based Overflow "Baron Samedit" Local Privilege Escalation was added on Sep, 24 and is found in 1 product.
View more detail on CVE-2021-3156
Linear eMerge e3-Series ReaderNo Command Injection was added on Sep, 25 and is found in 1 product.
View more detail on CVE-2019-7256
Four-Faith Hidden Creds and OS command execution was added on Oct, 8 and is found in 2 products.
- 18 new initial-access advisories
- 7 new indices
- 32 new initial-access advisories
- 6 new indices
- 29 new Initial Access advisories
- 16 New indices
- 4 New Features
- 13 new Initial Access advisories
- 15 New indices
- 13 New indices
- 11 new Initial Access entries
- New Initial Access features
- 3 New indices including Microsoft KB list by CVE
- 5 new Initial Access entries
- Upgraded dashboard, and the VulnCheck KEV Browser
- 6 New indices including OpenCloud Vulnerability & Security Issue Database
- 5 New Initial Access artifacts
- New Features
- 3 New Advisories
- 10 New Indices
- CVE Browser
- 4 new Initial Access advisories
- New query parameters for the ipintel-* IP Intelligence indexes and more
- 33 new indices including Microsoft Security Updates
- Introducing VulnCheck IP Intelligence
- 5 new Initial Access advisories
- 17 new indices
- Recent IA activity including Apache Druid Log4Shell and ownCloud graphapi
- 17 new Indices including LG security, and several Apache projects
- 20 new Indices including mitre-attack-cve, botnets, and ransomware
- 5 new Indices including osv and cbl-mariner
- New Changelog Initial Access Details
- 20 new indices including nokia, blackberry, and iava
- Search for aliases in all indices
- 30 new indices including checkpoint, jetbrains, and bitdefender
- New indices: epss, vulnerability-aliases, and threat-actors
- More Indices: kubernetes, rustsec-advisories, hashicorp, wolfssl, zoom, and salesforce
- New Documentation Portal
- 64 New Indices
- New Index: vulncheck-nvd2 - NIST NVD V2.0 data supplemented with VulnCheck Data
- New Indices: twcert, vde, watchguard, vyaire, and ubiquiti
- New Indices: usom, zimba, zyxel, yokogawa, nodejs, and hkcert
- We have a booth at BlackHat. Come say hi!
- New Indices: schneider-electric, dell, arch, debian, rocky, and wolfi
- Fixes to the github-exploits backup
- New Indexes: vulncheck-nvd, eol and many more
- New Indexes: nist-nvd and many more
- Multi-region support for backups
- Portal Feature: Employee Invitations
- New package managers for PURL queries
- 13 New Indexes
- OPAM, Wolfi and Swift support for PURL queries
- New V3 Exploits Index
- About 25+ more Indices
- We are now a CVE Numbering Authority
- Postman collection support
- New package managers added to our PURL support
- Providing Fixed Version in OS package manager support
- New package types support for PURL: Maven, PHP, Ruby, and Rust
- 5 New Indices: ABB, AlmaLinux, Alpine Linux, AWS and Apple
- New Endpoint: Request vulns related to a PURL
- Snort Rule added to initial-access index
- New Endpoint: Request vulns related to a CPE
- New Index: Debian Security Tracker
- Welcome to the VulnCheck Changelog
- New Indices: CNVD Flaws and CNVD Bulletins
