Lucene search
K

13 matches found

Nuclei
Nuclei
added 3 hours ago24 views

NocoDB - User Enumeration

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, the password forgot endpoint returned different responses for registered and unregistered emails, allowing user enumeration. This issue has been patched in version 0.301.3. id: CVE-2026-28358 info: name: NocoDB -...

6.9CVSS5.9AI score0.00601EPSS
Exploits0References3
Circl
Circl
added 2026/04/02 4:59 a.m.6 views

CVE-2026-28358

creationtimestamp| type| source ---|---|--- 2026-04-02 04:59:00+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28358.yaml...

6.9CVSS5.8AI score0.00601EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:1 a.m.3 views

CVE-2023-28358

A vulnerability has been discovered in Rocket.Chat where a markdown parsing issue in the "Search Messages" feature allows the insertion of malicious tags. This can be exploited on servers with content security policy disabled possible leading to some issues attacks like account takeover...

6.1CVSS7AI score0.00389EPSS
Exploits0References1
Circl
Circl
added 2023/05/12 2:26 a.m.7 views

CVE-2023-28358

creationtimestamp| type| source ---|---|--- 2023-05-12 02:26:32+00:00| seen| https://t.me/cibsecurity/63938...

6.1CVSS6AI score0.00389EPSS
Exploits0References1
NVD
NVD
added 2023/05/11 10:15 p.m.13 views

CVE-2023-28358

A vulnerability has been discovered in Rocket.Chat where a markdown parsing issue in the "Search Messages" feature allows the insertion of malicious tags. This can be exploited on servers with content security policy disabled possible leading to some issues attacks like account takeover...

6.1CVSS6.2AI score0.00389EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/11 12:0 a.m.16 views

CVE-2023-28358

A vulnerability has been discovered in Rocket.Chat where a markdown parsing issue in the "Search Messages" feature allows the insertion of malicious tags. This can be exploited on servers with content security policy disabled possible leading to some issues attacks like account takeover...

6.4AI score0.00389EPSS
Exploits0References1
CVE
CVE
added 2023/05/11 12:0 a.m.53 views

CVE-2023-28358

CVE-2023-28358 affects Rocket.Chat via a markdown parsing issue in the Search Messages feature. The vulnerability allows insertion of malicious tags due to improper parsing, enabling a cross-site scripting (XSS) vector that can be used to obtain sensitive information or potentially lead to accoun...

6.1CVSS6.2AI score0.00389EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/04/13 8:15 p.m.18 views

CVE-2021-28358

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

8.8CVSS0.02315EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/04/13 7:33 p.m.29 views

CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.02315EPSS
Exploits0References1
CVE
CVE
added 2021/04/13 7:33 p.m.127 views

CVE-2021-28358

Technical details for CVE-2021-28358 are not provided in the given documents. Monitoring updates is recommended as no affected products, root cause, impact, or remediation are stated here.

8.8CVSS8.9AI score0.02315EPSS
Exploits0References1Affected Software8
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.56 views

KB5001389: Windows Server 2008 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...

8.8CVSS7.4AI score0.06112EPSS
Exploits1References49
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.53 views

KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...

8.8CVSS7AI score0.61648EPSS
Exploits3References64
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.166 views

KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...

9.8CVSS7.3AI score0.61648EPSS
Exploits4References78
Rows per page
Query Builder