Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2009-3772 | Rejected reason: This candidate is unused by its CNA. | N/A | 0.04% | 2023-09-14 | 2023-11-06 |
| CVE-2009-3771 | Rejected reason: This candidate is unused by its CNA. | N/A | 0.04% | 2023-09-14 | 2023-11-06 |
| CVE-2009-3770 | Rejected reason: This candidate is unused by its CNA. | N/A | 0.04% | 2023-09-14 | 2023-11-06 |
| CVE-2009-3769 | Rejected reason: This candidate is unused by its CNA. | N/A | 0.04% | 2023-09-14 | 2023-11-06 |
| CVE-2009-3768 | Rejected reason: This candidate is unused by its CNA. | N/A | 0.04% | 2023-09-14 | 2023-11-06 |
| CVE-2009-10004 | A vulnerability was found in Turante Sandbox Theme up to 1.5.2. It has been classified as problematic. This affects the function sandbox_body_class of the file functions.php. The manipulation of the argument page leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.6.1 is able to address this issue. The identifier of the patch is 8045b1e10970342f558b2c5f360e0bd135af2b10. It is recommended to upgrade the affected component. The identifier VDB-22535 | 3.5 | 0.53% | 2023-04-09 | 2026-06-16 |
| CVE-2009-10003 | A vulnerability was found in capnsquarepants wordcraft up to 0.6. It has been classified as problematic. Affected is an unknown function of the file tag.php. The manipulation of the argument tag leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 0.7 is able to address this issue. The patch is identified as be23028633e8105de92f387036871c03f34d3124. It is recommended to upgrade the affected component. VDB-219714 is the identifier assigned to this vuln | 3.5 | 0.52% | 2023-01-29 | 2026-06-16 |
| CVE-2009-10002 | A vulnerability, which was classified as problematic, has been found in dpup fittr-flickr. This issue affects some unknown processing of the file fittr-flickr/features/easy-exif.js of the component EXIF Preview Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier of the patch is 08875dd8a2e5d0d16568bb0d67cb4328062fccde. It is recommended to apply a patch to fix this issue. The identifier VDB-218297 was assigned to this vulnerability. | 3.5 | 0.54% | 2023-01-13 | 2026-06-16 |
| CVE-2009-10001 | A vulnerability classified as problematic was found in jianlinwei cool-php-captcha up to 0.2. This vulnerability affects unknown code of the file example-form.php. The manipulation of the argument captcha with the input %3Cscript%3Ealert(1)%3C/script%3E leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.3 is able to address this issue. The name of the patch is c84fb6b153bebaf228feee0cbf50728d27 | 3.5 | 0.75% | 2023-01-13 | 2026-06-16 |
| CVE-2009-1143 | An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can bypass intended access restrictions on mounting shares via a symlink attack that leverages a realpath race condition in mount.vmhgfs (aka hgfsmounter). | 7.0 | 0.25% | 2022-11-23 | 2026-06-16 |
| CVE-2009-1142 | An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can gain privileges via a symlink attack on /tmp files if vmware-user-suid-wrapper is setuid root and the ChmodChownDirectory function is enabled. | 6.7 | 0.27% | 2022-11-23 | 2026-06-16 |
| CVE-2009-4291 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4290 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4289 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4288 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4287 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4286 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4285 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4284 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |
| CVE-2009-4283 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2009. Notes: none | N/A | 0.22% | 2021-06-11 | 2023-11-06 |