Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 5:3 p.m.0 views

CVE-2026-23973

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through 1.7.5...

7.1CVSS5.8AI score0.00045EPSS
Exploits0References1
NVD
NVDadded 2026/03/25 5:16 p.m.1 views

CVE-2026-23973

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through 1.7.5...

7.1CVSS0.00045EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/25 4:14 p.m.0 views

CVE-2026-23973 WordPress Golo theme < 1.7.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uxper Golo golo allows Reflected XSS.This issue affects Golo: from n/a through 1.7.5...

7.1CVSS5.8AI score0.00045EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/25 12:0 a.m.1 views

PT-2026-27845

Name of the Vulnerable Software and Affected Versions uxper Golo versions prior to 1.7.5 Description An issue exists in uxper Golo that allows for Reflected Cross-site Scripting XSS. This occurs due to improper neutralization of input during web page generation. The issue affects the application’...

7.1CVSS5.9AI score0.00045EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/03/25 12:0 a.m.3 views

WordPress plugin Golo 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. Versions of...

7.1CVSS5.7AI score0.00045EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/05 12:0 a.m.4 views

RustDesk Server PRO 安全漏洞

RustDesk Server PRO is a set of remote desktop server management scripts developed by RustDesk’s individual developers. Versions of RustDesk Server PRO prior to 1.7.5 contained security vulnerabilities, which stemmed from the transmission of sensitive information in plain text, potentially allowi...

8.7CVSS5.8AI score0.00024EPSS
Exploits1References3
Patchstack
Patchstackadded 2026/02/05 2:54 a.m.3 views

WordPress Golo theme < 1.7.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Golo versions 1.7.5...

8.8CVSS5.2AI score0.00051EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/01/23 9:15 p.m.3 views

CVE-2026-23975

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Golo golo allows PHP Local File Inclusion.This issue affects Golo: from n/a through 1.7.5...

7.5CVSS5.5AI score0.0022EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.4 views

CVE-2026-23975

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Golo golo allows PHP Local File Inclusion.This issue affects Golo: from n/a through 1.7.5...

7.5CVSS0.0022EPSS
Exploits0References1
NVD
NVDadded 2026/01/22 5:16 p.m.3 views

CVE-2026-23974

Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Golo: from n/a through 1.7.5...

5.3CVSS0.00051EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.2 views

CVE-2026-23974

Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Golo: from n/a through 1.7.5...

8.8CVSS5.3AI score0.00051EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/01/22 4:52 p.m.3 views

CVE-2026-23975

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in uxper Golo golo allows PHP Local File Inclusion.This issue affects Golo: from n/a through 1.7.5...

9.8CVSS5.4AI score0.0022EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/11/21 6:47 p.m.2 views

CVE-2025-64767 hpke-js reuses AEAD nonces

hpke-js is a Hybrid Public Key Encryption HPKE module built on top of Web Cryptography API. Prior to version 1.7.5, the public SenderContext Seal API has a race condition which allows for the same AEAD nonce to be re-used for multiple Seal calls. This can lead to complete loss of Confidentiality...

9.1CVSS6.5AI score0.0003EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/10/23 3:13 p.m.1 views

CVE-2025-59557

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ThemeMove Learts Addons learts-addons allows SQL Injection.This issue affects Learts Addons: from n/a through 1.7.5...

9.3CVSS7.7AI score0.00037EPSS
Exploits0References1
NVD
NVDadded 2025/10/22 3:15 p.m.1 views

CVE-2025-59557

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ThemeMove Learts Addons learts-addons allows SQL Injection.This issue affects Learts Addons: from n/a through 1.7.5...

9.3CVSS0.00037EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/22 2:32 p.m.7 views

CVE-2025-59557 WordPress Learts Addons Plugin < 1.7.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ThemeMove Learts Addons learts-addons allows SQL Injection.This issue affects Learts Addons: from n/a through 1.7.5...

9.3CVSS0.00037EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/22 2:32 p.m.1 views

CVE-2025-59557 WordPress Learts Addons Plugin < 1.7.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ThemeMove Learts Addons learts-addons allows SQL Injection.This issue affects Learts Addons: from n/a through 1.7.5...

9.3CVSS7.2AI score0.00037EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/10/22 12:0 a.m.1 views

WordPress plugin Learts Addons SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A SQL injectio...

9.3CVSS7.8AI score0.00037EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/07/08 5:37 a.m.1 views

WordPress Learts Addons Plugin < 1.7.5 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Bonds in WordPress Plugin Learts Addons versions 1.7.5...

9.3CVSS8AI score0.00037EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologiesadded 2024/06/14 12:0 a.m.2 views

PT-2024-27809 · Nextcloud · Nextcloud Deck

Name of the Vulnerable Software and Affected Versions: Nextcloud Deck versions prior to 1.6.6 Nextcloud Deck versions prior to 1.7.5 Nextcloud Deck versions prior to 1.8.7 Nextcloud Deck versions prior to 1.9.6 Nextcloud Deck versions prior to 1.11.3 Nextcloud Deck versions prior to 1.12.1...

4.3CVSS7.2AI score0.00144EPSS
Exploits0References8
Rows per page
Query Builder