Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7703 matches found

CVE
CVEadded 2024/01/28 11:9 p.m.53 views

CVE-2024-23782

CVE-2024-23782 is a cross-site scripting vulnerability in a-blog cms affecting: 3.1.x before 3.1.7; 3.0.x before 3.0.29; 2.11.x before 2.11.58; 2.10.x before 2.10.50; and 2.9.0 and earlier. An attacker with contributor or higher privileges can cause arbitrary script execution in a user’s browser....

5.4CVSS6.2AI score0.00298EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/01/28 11:9 p.m.20 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

6.5AI score0.00298EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/01/28 11:9 p.m.6 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

5.6AI score0.00298EPSS
Exploits0References2
Openbugbounty
Openbugbountyadded 2024/01/28 10:42 a.m.8 views

blog.sarbacane.com Cross Site Scripting vulnerability OBB-3845088

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNNVD
CNNVDadded 2024/01/28 12:0 a.m.3 views

a-blog cms security breach

a-blog cms is a Japanese content management system CMS. A security vulnerability exists in a-blog cms that originates from a user with Contributor or higher privileges being able to execute arbitrary scripts on the user's web browser. The following products and versions are affected: a-blog cms...

5.4CVSS7.2AI score0.00298EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/01/28 12:0 a.m.4 views

PT-2024-20081 · Unknown · A-Blog Cms

Name of the Vulnerable Software and Affected Versions: a-blog cms versions prior to 3.1.7 a-blog cms versions prior to 3.0.29 a-blog cms versions prior to 2.11.58 a-blog cms versions prior to 2.10.50 a-blog cms version 2.9.0 and earlier Description: A cross-site scripting vulnerability exists in...

5.4CVSS5.4AI score0.00298EPSS
Exploits0References8
NVD
NVDadded 2024/01/25 9:15 p.m.11 views

CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

8.8CVSS9AI score0.01245EPSS
Exploits1References1
OSV
OSVadded 2024/01/25 9:15 p.m.18 views

CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

8.8CVSS8.2AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2024/01/25 9:15 p.m.20 views

CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

8.8CVSS7.8AI score0.01245EPSS
Exploits1References2
Prion
Prionadded 2024/01/25 9:15 p.m.12 views

Design/Logic Flaw

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

6.5CVSS8.4AI score0.01245EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2024/01/25 9:15 p.m.1 views

UBUNTU-CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

8.8CVSS6.4AI score0.01245EPSS
Exploits1References3
Schneier on Security
Schneier on Securityadded 2024/01/25 12:4 p.m.16 views

Quantum Computing Skeptics

Interesting article. I am also skeptical that we are going to see useful quantum computers anytime soon. Since at least 2019, I have been saying that this is hard. And that we dont know if its "land a person on the surface of the moon" hard, or "land a person on the surface of the sun" hard. They...

7.2AI score
Exploits0
Kitploit
Kitploitadded 2024/01/25 11:30 a.m.27 views

Antisquat - Leverages AI Techniques Such As NLP, ChatGPT And More To Empower Detection Of Typosquatting And Phishing Domains

AntiSquat leverages AI techniques such as natural language processing NLP, large language models ChatGPT and more to empower detection of typosquatting and phishing domains. How to use Clone the project via git clone https://github.com/redhuntlabs/antisquat. Install all dependencies by typing pip...

6.8AI score
Exploits0References2
GithubExploit
GithubExploitadded 2024/01/25 5:32 a.m.383 views

Exploit for Injection in Atlassian Confluence_Data_Center

CVE-2023-22527: Atlassian Confluence Vulnerability Introdu...

10CVSS9.8AI score0.99984EPSS
Exploits31
Cvelist
Cvelistadded 2024/01/25 12:0 a.m.16 views

CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

9.2AI score0.01245EPSS
Exploits1References1
CNNVD
CNNVDadded 2024/01/25 12:0 a.m.3 views

PluXml Security Vulnerability

PluXml is a free and open source content management system that does not require a database to work. A security vulnerability exists in PluXml Blog version v5.8.9, which stems from a remote code execution vulnerability contained in a static page that can be used to execute remote code by injectin...

8.8CVSS8.1AI score0.01245EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/01/25 12:0 a.m.5 views

PT-2024-19512 · Unknown · Pluxml Blog

Name of the Vulnerable Software and Affected Versions: PluXml Blog version 5.8.9 Description: The issue is related to a remote code execution RCE vulnerability in the Static Pages feature of PluXml Blog. This vulnerability can be exploited by injecting a crafted payload into the Content field...

8.8CVSS8.7AI score0.01245EPSS
Exploits1References9
Vulnrichment
Vulnrichmentadded 2024/01/25 12:0 a.m.4 views

CVE-2024-22636

PluXml Blog v5.8.9 was discovered to contain a remote code execution RCE vulnerability in the Static Pages feature. This vulnerability is exploited via injecting a crafted payload into the Content field...

8.4AI score0.01245EPSS
Exploits1References1
CVE
CVEadded 2024/01/25 12:0 a.m.214 views

CVE-2024-22636

PluXml Blog v5.8.9 contains a remote code execution (RCE) vulnerability in the Static Pages feature, exploitable by injecting a crafted payload into the Content field. Affected product: PluXml Blog 5.8.9. Root cause details are not fully defined across the supplied sources, but multiple feeds ran...

8.8CVSS8.9AI score0.01245EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVEadded 2024/01/25 12:0 a.m.12 views

CVE-2024-22636

Removed by vendor...

8.8CVSS8.7AI score0.01245EPSS
Exploits1
Rows per page
Query Builder