Lucene search
K

6 matches found

Cvelist
Cvelist
added 2026/06/08 10:54 a.m.39 views

CVE-2026-11569 Quay: quay: stored xss via filedrop svg upload

A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing an authenticated user with repository write access to upload a malicious SVG file containing JavaScript. The file is stored and served inline through the CDN, enabling stored cross-site scripting wh...

5.4CVSS0.00138EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/05 5:9 p.m.25 views

CVE-2024-45401 stripe-cli Path Traversal vulnerability

stripe-cli is a command-line tool for the payment processor Stripe. A vulnerability exists in stripe-cli starting in version 1.11.1 and prior to version 1.21.3 where a plugin package containing a manifest with a malformed plugin shortname installed using the --archive-url or --archive-path flags...

7.5CVSS0.00195EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/05 5:9 p.m.22 views

CVE-2024-45401 stripe-cli Path Traversal vulnerability

stripe-cli is a command-line tool for the payment processor Stripe. A vulnerability exists in stripe-cli starting in version 1.11.1 and prior to version 1.21.3 where a plugin package containing a manifest with a malformed plugin shortname installed using the --archive-url or --archive-path flags...

7.5CVSS7AI score0.00195EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.4 views

SUSE CVE-2002-1467

Macromedia Flash Plugin before 6,0,47,0 allows remote attackers to bypass the same-domain restriction and read arbitrary files via 1 an HTTP redirect, 2 a "file://" base in a web document, or 3 a relative URL from a web archive mht file...

5CVSS7AI score0.01907EPSS
Exploits1References3
Kitploit
Kitploit
added 2018/04/13 8:23 p.m.17 views

ReconCat - Tool To Fetch Archive Url Snapshots From Archive.org

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose. This application is powered byWMB-Scrapper Installation Clone this...

7.3AI score
Exploits0References3
Openbugbounty
Openbugbounty
added 2016/04/30 1:47 a.m.9 views

closermag.fr XSS vulnerability

Vulnerable URL: http://www.closermag.fr/Archive/annee/2013'"/alert"openbugbounty"...

6.9AI score
Exploits0
Rows per page
Query Builder