Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2011-3443

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service hea...

7.5CVSS8.4AI score0.01686EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 1:5 a.m.3 views

CVE-2022-28368

Dompdf 1.2.1 allows remote code execution via a .php file in the src:url field of an @font-face Cascading Style Sheets CSS statement within an HTML input file...

9.8CVSS7.5AI score0.88271EPSS
Exploits8References1
SUSE CVE
SUSE CVEadded 2023/02/15 5:56 a.m.2 views

SUSE CVE-2010-3768

Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system's font implementation, which allows remote attackers to execute arbitrary code via...

9.3CVSS7.9AI score0.06139EPSS
Exploits0References5
Prion
Prionadded 2022/04/03 3:15 a.m.17 views

Input validation

Dompdf 1.2.1 allows remote code execution via a .php file in the src:url field of an @font-face Cascading Style Sheets CSS statement within an HTML input file...

7.5CVSS9.5AI score0.88271EPSS
Exploits8References7Affected Software1
Debian CVE
Debian CVEadded 2022/04/03 12:0 a.m.56 views

CVE-2022-28368

Dompdf 1.2.1 allows remote code execution via a .php file in the src:url field of an @font-face Cascading Style Sheets CSS statement within an HTML input file...

9.8CVSS9.7AI score0.88271EPSS
Exploits8
Positive Technologies
Positive Technologiesadded 2022/04/03 12:0 a.m.4 views

PT-2022-18977 · Dompdf · Dompdf

Name of the Vulnerable Software and Affected Versions: Dompdf versions prior to 1.2.1 Description: The issue allows remote code execution via a .php file in the src field of an @font-face Cascading Style Sheets CSS statement within an HTML input file. This is a general information about the issue...

9.8CVSS9.5AI score0.88271EPSS
Exploits8References17
CNNVD
CNNVDadded 2022/04/03 12:0 a.m.4 views

Dompdf 跨站脚本漏洞

Dompdf is an HTML to PDF converter. A cross-site scripting vulnerability exists in Dompdf version 1.2.1 that allows remote code execution via a .php file in the src:url field of an @font-face cascading style sheet CSS statement...

9.8CVSS8.8AI score0.88271EPSS
Exploits8References8
seebug.org
seebug.orgadded 2009/09/02 12:0 a.m.26 views

Microsoft Windows嵌入式OpenType字体引擎拒绝服务漏洞

BUGTRAQ ID: 36029 CVECAN ID: CVE-2009-3020 Microsoft Windows是微软开发的非常流行的操作系统。 Windows Server 2003 SP2的嵌入式OpenType(EOT)字体引擎所使用的win32k.sys驱动中存在拒绝服务漏洞。如果用户受骗打开的HTML文档中@font- face CSS规则的src描述符引用了特制的.eot文件,就可能导致系统崩溃。 Microsoft Windows Server 2003 SP2 厂商补丁: Microsoft ---------...

7.1CVSS6.4AI score0.27615EPSS
Exploits3
Rows per page
Query Builder