Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/02/04 12:0 a.m.3 views

brace-expansion 安全漏洞

Brace-expansion is a JavaScript extension developed by Julian Gruber. Versions prior to brace-expansion 5.0.1 contained a security vulnerability due to an unbounded parentheses expansion mechanism, which could lead to regular expression denial-of-service attacks...

9.2CVSS6.8AI score0.00041EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/09/08 8:30 p.m.20 views

CVE-2022-36096 XWiki Platform vulnerable to Cross-site Scripting in the deleted attachments list

The XWiki Platform Index UI is an Index of all pages, attachments, orphans and deleted pages and attachments for XWiki Platform, a generic wiki platform. Prior to versions 13.10.6 and 14.3, it's possible to store JavaScript which will be executed by anyone viewing the deleted attachments index wi...

8.9CVSS9.2AI score0.44248EPSS
Exploits0References3
CNVD
CNVDadded 2019/07/17 12:0 a.m.1 views

NGINX njs buffer overflow vulnerability (CNVD-2019-23077)

NGINX is the United States NGINX company a lightweight Web server/reverse proxy server and e-mail IMAP/POP3 proxy server. njs is one of the support for extending the functionality of NGINX scripting language components . A buffer overflow vulnerability exists in nxtvsprintf in the nxt/nxtsprintf....

6.5CVSS7AI score0.00288EPSS
Exploits1References1
BDU FSTEC
BDU FSTECadded 2016/12/27 12:0 a.m.4 views

Microsoft Edge browser vulnerability, which allows a hacker to trigger a service failure or execute arbitrary code

The vulnerability of The Chakra JavaScript browser extension in Microsoft Edge arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or trigger a service failure memory corruption through a...

7.6CVSS8.1AI score0.76867EPSS
Exploits4References4
BDU FSTEC
BDU FSTECadded 2016/11/28 12:0 a.m.2 views

Microsoft Edge browser vulnerability, which allows a hacker to trigger a service failure or execute arbitrary code

The vulnerability of the Chakra JavaScript browser extension provided by Microsoft Edge arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or trigger a service failure memory corruption throug...

9.3CVSS7.9AI score0.75868EPSS
Exploits0References2
OSV
OSVadded 2006/09/27 11:7 p.m.1 views

DEBIAN-CVE-2006-5031

Directory traversal vulnerability in app/webroot/js/vendors.php in Cake Software Foundation CakePHP before 1.1.8.3544 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter, followed by a filename ending with "%00" and a .js filename...

5CVSS6.9AI score0.0688EPSS
Exploits1References1
Rows per page
Query Builder