CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/01/16 7:16 p.m.•3 views

CVE-2021-47836

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS0.00311EPSS

CVE•added 2026/01/16 7:9 p.m.•12 views

CVE-2021-47836

Markdown Explorer 0.1.1 is affected by a persistent cross-site scripting (XSS) vulnerability that allows attackers to upload Markdown files with embedded JavaScript to execute remote commands and potentially gain system access. Root cause is XSS via file uploads/editor inputs. Public exploits are...

6.1CVSS5.8AI score0.00311EPSS

Cvelist•added 2026/01/16 7:9 p.m.•20 views

CVE-2021-47836 Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS0.00311EPSS

Vulnrichment•added 2026/01/16 7:9 p.m.•2 views

CVE-2021-47836 Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS6.1AI score0.00311EPSS

ATTACKERKB•added 2026/01/16 7:9 p.m.•2 views

CVE-2021-47836

Markdown Explorer 0.1.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious code through file uploads and editor inputs. Attackers can upload markdown files with embedded JavaScript payloads that execute in the application's privileged renderer context, allowin...

6.1CVSS6.1AI score0.00311EPSS

Exploits0References3Affected Software1

IBM Security Bulletins•added 2026/01/16 10:49 a.m.•6 views

Security Bulletin: Confidentiality Vulnerability in IBM Watson Explorer Related to Java SE JAXP

Summary IBM SDK, Java Technology is used within IBM Watson Explorer CVE-2025-53066 Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An unspecified vulnerability in Java SE related to the JAXP component could allow a remote attacker to cause high confidentiality impact, no integrity impact,...

7.5CVSS6.1AI score0.00633EPSS

Exploits0Affected Software2

Positive Technologies•added 2026/01/16 12:0 a.m.•2 views

PT-2026-3291

6.1CVSS7AI score0.00311EPSS

Exploits0References5

CNNVD•added 2026/01/16 12:0 a.m.•3 views

Markdown Explorer security vulnerabilities

Markdown Explorer is a Markdown document browser developed by jersou. Version 0.1.1 of Markdown Explorer contains a security vulnerability; this vulnerability stems from cross-site scripting in file uploads and editor inputs, which may lead to remote code execution...

6.1CVSS6AI score0.00311EPSS

OSV•added 2026/01/15 4:16 p.m.•2 views

CVE-2021-47767

10-Strike Network Inventory Explorer Pro 9.31 contains an unquoted service path vulnerability in the srvInventoryWebServer service running with LocalSystem privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path segments to achieve privilege escalati...

8.5CVSS5.9AI score0.00213EPSS

NVD•added 2026/01/15 4:16 p.m.•4 views

CVE-2021-47772

10-Strike Network Inventory Explorer Pro 9.31 contains a buffer overflow vulnerability in the text file import functionality that allows remote code execution. Attackers can craft a malicious text file with carefully constructed payload to trigger a reverse shell and execute arbitrary code on the...

9.8CVSS0.00648EPSS

NVD•added 2026/01/15 4:16 p.m.•3 views

CVE-2021-47767

8.5CVSS0.00213EPSS

Vulnrichment•added 2026/01/15 3:52 p.m.•2 views

CVE-2021-47772 10-Strike Network Inventory Explorer Pro 9.31 - Buffer Overflow (SEH)

9.8CVSS8.5AI score0.00648EPSS

Cvelist•added 2026/01/15 3:52 p.m.•18 views

CVE-2021-47772 10-Strike Network Inventory Explorer Pro 9.31 - Buffer Overflow (SEH)

9.8CVSS0.00648EPSS

ATTACKERKB•added 2026/01/15 3:52 p.m.•4 views

CVE-2021-47772

9.8CVSS6.9AI score0.00648EPSS

CVE•added 2026/01/15 3:52 p.m.•9 views

CVE-2021-47772

CVE-2021-47772 affects 10-Strike Network Inventory Explorer Pro 9.31. The issue is a buffer overflow in the text file import functionality that allows remote code execution. The description notes a crafted text file can trigger a reverse shell and execute arbitrary code on the target system. Conn...

9.8CVSS8.5AI score0.00648EPSS

Cvelist•added 2026/01/15 3:52 p.m.•27 views

CVE-2021-47767 10-Strike Network Inventory Explorer Pro 9.31 - 'srvInventoryWebServer' Unquoted Service Path

8.5CVSS0.00213EPSS

CVE•added 2026/01/15 3:52 p.m.•9 views

CVE-2021-47767

CVE-2021-47767 affects 10-Strike Network Inventory Explorer Pro 9.31, specifically the srvInventoryWebServer service which runs with LocalSystem privileges. The root cause is an unquoted service path, allowing an attacker to place a malicious executable in an unresolved path segment to achieve pr...

8.5CVSS7.3AI score0.00213EPSS

ATTACKERKB•added 2026/01/15 3:52 p.m.•3 views

CVE-2021-47767

8.5CVSS5.7AI score0.00213EPSS

Vulnrichment•added 2026/01/15 3:52 p.m.•2 views

CVE-2021-47767 10-Strike Network Inventory Explorer Pro 9.31 - 'srvInventoryWebServer' Unquoted Service Path

8.5CVSS7.3AI score0.00213EPSS