CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2026/01/10 12:30 a.m.•2 views

EUVD-2025-206271

Details On October 1, 2025, Palantir discovered that images uploaded through the Dossier front-end app were not being marked correctly with the proper security levels. The regression was traced back to a change in May 2025, which was meant to allow file uploads to be shared among different...

3.5CVSS6.3AI score0.00014EPSS

Exploits0References2

NVD•added 2026/01/09 10:16 p.m.•2 views

CVE-2025-62487

On October 1, 2025, Palantir discovered that images uploaded through the Dossier front-end app were not being marked correctly with the proper security levels. The regression was traced back to a change in May 2025, which was meant to allow file uploads to be shared among different artifacts e.g...

3.5CVSS0.00014EPSS

Exploits0References1

Vulnrichment•added 2026/01/09 9:17 p.m.•4 views

CVE-2025-62487 Under certain configurations, file artifacts uploaded to the Dossier and Slides apps did not inherit security markings of their parent artifact. This lack of security markings could lead to unintended access to the uploaded files.

3.5CVSS6.4AI score0.00014EPSS

Exploits0References1

Positive Technologies•added 2026/01/09 12:0 a.m.•3 views

PT-2026-1839

Name of the Vulnerable Software and Affected Versions Palantir Dossier and Slides apps affected versions not specified Description Images uploaded through the Dossier front-end app were not consistently marked with the correct security levels. This issue stemmed from a change implemented in May...

3.5CVSS6.3AI score0.00014EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-1999-0157

Malware in sbrugna...

5CVSS6.4AI score0.00504EPSS

Exploits0References2

Openbugbounty•added 2017/11/11 9:16 a.m.•11 views

cbac.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-407907 Description| Value ---|--- Affected Website:| cbac.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Atlassian•added 2013/08/30 6:26 p.m.•18 views

/rest/menu/1.0/appswitcher displays data unauthenticated

"Calling" this function returns data without any authentication required: noformat curl https://support.atlassian.com/rest/menu/latest/appswitcher | python -mjson.tool % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 787 0 787 0 0 531 0...

7.3AI score

Exploits0

CVE•added 2002/06/25 4:0 a.m.•56 views

CVE-2001-0929

The CVE-2001-0929 issue affects Cisco IOS CBAC (Context-Based Access Control) / Cisco Secure Integrated Software in IOS 11.2P–12.2T. The root cause is improper checking of the IP protocol type, enabling remote attackers to bypass dynamic ACLs and gain access to denied traffic. Documented as Cisco...

7.5CVSS6.7AI score0.00682EPSS

Exploits0References5Affected Software1

CVE•added 1999/09/29 4:0 a.m.•52 views

CVE-1999-0157

Cisco PIX firewall/CBAC is affected by CVE-1999-0157 due to an IP fragmentation handling issue that can lead to a denial of service. The available connected documents identify the affected product (Cisco PIX firewall with CBAC) and the impact (DoS), but do not provide explicit root-cause details,...

5CVSS7.3AI score0.00504EPSS

Exploits0References1Affected Software2