Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в w3m

There is a out-of-bounds write vulnerability in checkType, located in etc.c in w3m 0.5.3. This vulnerability can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause a Denial of Service attack, or potentially cause other unspecified impacts...

7.8CVSS7.1AI score0.00142EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/03/23 12:0 a.m.2 views

PT-2026-27274

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.165 Description A heap buffer overflow exists in the WebAudio component of Google Chrome. This flaw allows a remote attacker to perform an out-of-bounds memory write through a specially crafted HTML...

8.8CVSS6AI score0.00065EPSS
Exploits0References23
Positive Technologies
Positive Technologiesadded 2026/03/04 12:0 a.m.1 views

PT-2026-22974

Name of the Vulnerable Software and Affected Versions ClamAV versions prior to 1.5.2 ClamAV versions prior to 1.4.4 Description A flaw exists in the HTML Cascading Style Sheets CSS module of ClamAV that could allow a remote, unauthenticated attacker to cause a denial of service DoS condition. Thi...

5.3CVSS5.9AI score0.00042EPSS
Exploits0References26
OSV
OSVadded 2025/09/08 6:15 p.m.2 views

CVE-2025-56265

An arbitrary file upload vulnerability in the Chat Trigger component of N8N v1.95.3, v1.100.1, and v1.101.1 allows attackers to execute arbitrary code via uploading a crafted HTML file...

8.8CVSS7.8AI score
Exploits0References3
OSV
OSVadded 2023/07/14 6:15 p.m.0 views

ALPINE-CVE-2023-38252

An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...

5.5CVSS6.2AI score0.00014EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2016/03/10 7:6 a.m.1 views

chromium-browser: use-after-free in Blink

WebKit/Source/core/layout/LayoutObject.cpp in Blink, as used in Google Chrome before 49.0.2623.87, does not properly restrict relayout scheduling, which allows remote attackers to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted HTML document...

9.3CVSS7.5AI score0.01831EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2011/01/25 5:6 p.m.3 views

WebKit: multiple vulnerabilities in WebKitGTK

WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; does not properly handle dynamic modification of a text node, which allows remote attackers to execute arbitrary code or cause a denial of service memory...

9.3CVSS7.8AI score0.04496EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2010/07/21 1:0 a.m.3 views

Mozilla Cross-origin data disclosure via Web Workers and importScripts

The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not verify that content is valid JavaScript code, which allows remote attackers to bypass the Same Origin Polic...

4.3CVSS7.4AI score0.00186EPSS
Exploits1References4
Rows per page
Query Builder