Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7703 matches found

OSV
OSVadded 2025/10/30 5:38 p.m.1 views

MAL-2025-49200 Malicious code in epic-ue-blog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 368954b0aea9243621f7133508baad0f16f003a15909f5790eb11025dc7fe870 The package epic-ue-blog was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/10/30 5:38 p.m.2 views

MAL-2025-49166 Malicious code in epic-node-blog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4207720525d69e9c09afb392295f1566d480abc128a98065be73bb7044e93291 The package epic-node-blog was found to contain malicious code...

7AI score
Exploits0
EUVD
EUVDadded 2025/10/30 3:32 p.m.2 views

EUVD-2025-37011

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

5.5AI score0.00285EPSS
Exploits1References4
OSV
OSVadded 2025/10/30 3:15 p.m.1 views

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

6.1CVSS5.9AI score0.00285EPSS
Exploits1References3
NVD
NVDadded 2025/10/30 3:15 p.m.3 views

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

6.1CVSS0.00285EPSS
Exploits1References3
HackRead
HackReadadded 2025/10/30 12:2 p.m.3 views

Aembit Introduces Identity and Access Management for Agentic AI

Silver Spring, USA/ Maryland, 30th October 2025, CyberNewsWire...

7AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/10/30 9:16 a.m.2 views

CVE-2025-58711

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS7AI score0.00227EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/30 12:0 a.m.6 views

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

0.00285EPSS
Exploits1References3
CNNVD
CNNVDadded 2025/10/30 12:0 a.m.5 views

Glamour Salon Management System 安全漏洞

Glamour Salon Management System is a salon management system by the individual developer Hiruna Gallage. A security vulnerability exists in Glamour Salon Management System v1, which stems from the blog comment section parameter in blog-details.php not being filtered correctly, which could lead to...

6.1CVSS6AI score0.00285EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/10/30 12:0 a.m.2 views

PT-2025-44408

Name of the Vulnerable Software and Affected Versions Glamour Salon Management System version 1 Description A cross-site scripting XSS issue exists in the blog-details.php component. This allows remote attackers to inject arbitrary web script or HTML through the blog comment section parameter. Th...

6.1CVSS5.5AI score0.00285EPSS
Exploits1References5
CVE
CVEadded 2025/10/30 12:0 a.m.9 views

CVE-2025-50574

CVE-2025-50574 is an XSS vulnerability affecting the Glamour Salon Management System v1, specifically in the blog-details.php component. The issue arises from insufficient input filtering on the blog comment section parameter, allowing remote attackers to inject arbitrary script or HTML. Multiple...

6.1CVSS5.6AI score0.00285EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/30 12:0 a.m.2 views

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

5.5AI score0.00285EPSS
Exploits1References3
HackRead
HackReadadded 2025/10/29 3:55 p.m.4 views

Sweet Security Brings Runtime-CNAPP Power to Windows

Tel Aviv, Israel, 29th October 2025, CyberNewsWire...

7AI score
Exploits0
EUVD
EUVDadded 2025/10/29 9:30 a.m.2 views

EUVD-2025-36633

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS6.5AI score0.00227EPSS
Exploits0References2
NVD
NVDadded 2025/10/29 9:15 a.m.8 views

CVE-2025-58711

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS0.00227EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/29 8:38 a.m.8 views

CVE-2025-58711 WordPress Blog Designer PRO plugin <= 3.4.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS0.00227EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/29 8:38 a.m.2 views

CVE-2025-58711 WordPress Blog Designer PRO plugin <= 3.4.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blog Designer PRO: from n/a through = 3.4.8...

5.3CVSS6.6AI score0.00227EPSS
Exploits0References1
CVE
CVEadded 2025/10/29 8:38 a.m.11 views

CVE-2025-58711

CVE-2025-58711 affects the WordPress Blog Designer PRO plugin up to version 3.4.8. The root cause is missing authorization checking, allowing access to functionality not properly constrained by ACLs. Impact is unauthorized access to constrained features; exploitation status is not provided in the...

5.3CVSS6.6AI score0.00227EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/10/29 12:11 a.m.16 views

CVE-2025-60354

Unauthorized modification of arbitrary articles vulnerability exists in blog-vue-springboot...

7.5CVSS7.1AI score0.00214EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/29 12:0 a.m.4 views

PT-2025-44238

Name of the Vulnerable Software and Affected Versions solwin Blog Designer PRO versions through 3.4.8 Description A missing authorization issue exists in solwin Blog Designer PRO, allowing access to functionality that is not properly constrained by Access Control Lists ACLs. Recommendations Updat...

5.3CVSS6.6AI score0.00227EPSS
Exploits0References3
Rows per page
Query Builder