Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2021-3757 | immer is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 1.65% | 2021-09-02 | 2026-06-17 |
| CVE-2021-3766 | objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 1.47% | 2021-09-06 | 2026-06-17 |
| CVE-2021-3645 | merge is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 1.38% | 2021-09-10 | 2026-06-17 |
| CVE-2021-3666 | body-parser-xml is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 1.26% | 2021-09-13 | 2026-06-17 |
| CVE-2021-3751 | libmobi is vulnerable to Out-of-bounds Write | 9.8 | 1.20% | 2021-09-15 | 2026-06-17 |
| CVE-2021-3797 | hestiacp is vulnerable to Use of Wrong Operator in String Comparison | 9.8 | 1.11% | 2021-09-15 | 2026-06-17 |
| CVE-2021-3878 | corenlp is vulnerable to Improper Restriction of XML External Entity Reference | 9.8 | 1.83% | 2021-10-15 | 2026-06-17 |
| CVE-2021-3881 | libmobi is vulnerable to Out-of-bounds Read | 9.8 | 1.12% | 2021-10-15 | 2026-06-17 |
| CVE-2021-3756 | libmysofa is vulnerable to Heap-based Buffer Overflow | 9.8 | 1.03% | 2021-10-29 | 2026-06-17 |
| CVE-2021-3918 | json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 3.56% | 2021-11-13 | 2026-06-17 |
| CVE-2021-3985 | kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 9.0 | 1.22% | 2021-12-01 | 2026-06-17 |
| CVE-2021-3994 | django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 9.6 | 1.35% | 2021-12-01 | 2026-06-17 |
| CVE-2021-3815 | utils.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | 9.8 | 0.84% | 2021-12-08 | 2026-06-17 |
| CVE-2021-3817 | wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command | 9.8 | 37.82% | 2021-12-09 | 2026-06-17 |
| CVE-2021-4119 | bookstack is vulnerable to Improper Access Control | 9.8 | 26.89% | 2021-12-15 | 2026-06-17 |
| CVE-2021-4139 | pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 9.0 | 0.88% | 2021-12-21 | 2026-06-17 |
| CVE-2022-0080 | mruby is vulnerable to Heap-based Buffer Overflow | 9.8 | 1.41% | 2022-01-02 | 2026-06-17 |
| CVE-2022-0086 | uppy is vulnerable to Server-Side Request Forgery (SSRF) | 9.8 | 1.21% | 2022-01-04 | 2026-06-17 |
| CVE-2022-0224 | dolibarr is vulnerable to Improper Neutralization of Special Elements used in an SQL Command | 9.8 | 1.99% | 2022-01-14 | 2026-06-17 |
| CVE-2022-0239 | corenlp is vulnerable to Improper Restriction of XML External Entity Reference | 9.8 | 1.22% | 2022-01-17 | 2026-06-17 |