Lucene search
K

754 matches found

OSV
OSV
added 2025/12/02 1:15 p.m.4 views

CVE-2025-11780

Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. In the 'showMeterReport' function, there is an unlimited user input that is copied to a fixed-size buffer via 'sprintf'. The 'GetParametermeter' function retrieves the user input, which is directly incorporated in...

9.8CVSS6.1AI score0.00284EPSS
Exploits0References1
OSV
OSV
added 2025/12/02 12:0 a.m.6 views

CVE-2025-65858

A Stored Cross-Site Scripting XSS vulnerability in Calibre-Web v0.6.25 allows attackers to inject malicious JavaScript into the 'username' field during user creation. The payload is stored unsanitized and later executed when the /ajax/listusers endpoint is accessed...

3.5CVSS5.1AI score0.00174EPSS
Exploits1References3
Veracode
Veracode
added 2025/11/26 7:59 a.m.7 views

Cross-Site Scripting (XSS)

nicegui is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to the framework not sanitizing HTML or JavaScript when rendering unescaped user input through ui.html, which allows an attacker to execute arbitrary JavaScript in a user’s browser...

6.1CVSS6.6AI score0.00188EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/11/21 12:29 p.m.9 views

CVE-2025-66091 WordPress Stylish Cost Calculator plugin <= 8.1.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Design Stylish Cost Calculator stylish-cost-calculator allows DOM-Based XSS.This issue affects Stylish Cost Calculator: from n/a through = 8.1.5...

6.5CVSS0.00134EPSS
Exploits0References1
NVD
NVD
added 2025/11/12 10:15 a.m.10 views

CVE-2025-11962

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in DivvyDrive Information Technologies Inc. Digital Corporate Warehouse allows Stored XSS. This issue affects Digital Corporate Warehouse: before v.4.8.2.22...

7.3CVSS0.00246EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/08 12:0 a.m.12 views

WordPress plugin HTML Forms – Simple WordPress Forms Plugin 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugin HTML For...

4.4CVSS5.7AI score0.00187EPSS
Exploits0References3
NVD
NVD
added 2025/10/27 10:15 p.m.8 views

CVE-2025-62779

Frappe Learning is a learning system that helps users structure their content. In Frappe Learning 2.39.1 and earlier, users were able to add HTML through input fields in the Job Form...

5.4CVSS0.00168EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/27 1:33 a.m.4 views

CVE-2025-62898 WordPress Links shortcode plugin <= 1.8.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maarten Links shortcode links-shortcode allows Stored XSS.This issue affects Links shortcode: from n/a through = 1.8.3...

6.5CVSS5.6AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.5 views

CVE-2025-52748

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in e-plugins Directory Pro directory-pro allows Reflected XSS.This issue affects Directory Pro: from n/a through = 2.5.5...

7.1CVSS6.4AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.4 views

CVE-2025-49911

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpinstinct WooCommerce Vehicle Parts Finder woo-vehicle-parts-finder allows Reflected XSS.This issue affects WooCommerce Vehicle Parts Finder: from n/a through = 3.7...

7.1CVSS0.00208EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/21 12:0 a.m.11 views

PT-2025-42828

Name of the Vulnerable Software and Affected Versions Zyxel ATP series versions V4.32 through V5.40 Zyxel USG FLEX series versions V4.50 through V5.40 Zyxel USG FLEX 50W series versions V4.16 through V5.40 Zyxel USG20W-VPN series versions V4.16 through V5.40 Description A missing authorization fl...

8.1CVSS9.5AI score0.05462EPSS
Exploits0References15
Amazon
Amazon
added 2025/10/14 12:0 a.m.7 views

Important: libcurand-13-0

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability may lead to a partial denial of service. CVE-2025-23248 NVIDIA...

7.8CVSS7.6AI score0.00306EPSS
Exploits1
Snyk
Snyk
added 2025/10/07 2:43 p.m.11 views

Cross-site Scripting (XSS)

Overview kibana is an open source Apache Licensed, browser-based analytics and search dashboard for Elasticsearch. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper neutralisation of input during web page generation. An attacker can execute arbitrary...

8.7CVSS5.5AI score0.00223EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3145

Malware in sbrugna...

6.5CVSS6.1AI score0.00768EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26800

Malware in sbrugna...

5.5CVSS5.7AI score0.0096EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-14126

Malware in sbrugna...

5.4CVSS5.5AI score0.00592EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0188

Malware in sbrugna...

5.4CVSS5.3AI score0.0097EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-4012

Malware in sbrugna...

7.5CVSS7.5AI score0.00639EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-2706

Malware in sbrugna...

9.3CVSS4.4AI score0.15044EPSS
Exploits0References47
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-3077

Malware in sbrugna...

7.5CVSS7.5AI score0.01231EPSS
Exploits0References2
Rows per page
Query Builder