CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/01/28 6:33 a.m.•25 views

CVE-2026-1466 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS0.00016EPSS

OSV•added 2026/01/28 6:33 a.m.•3 views

CVE-2026-1466 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS5AI score0.00166EPSS

Exploits0References6

Vulnrichment•added 2026/01/28 6:33 a.m.•2 views

CVE-2026-1466 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS5AI score0.00016EPSS

CNNVD•added 2026/01/28 12:0 a.m.•2 views

Jirafeau cross-site scripting vulnerability

Jirafeau is a simple method for uploading files developed by Jérôme Jutteau. Jirafeau has a cross-site scripting vulnerability; this vulnerability arises from the ability to bypass preview restrictions by sending HTTP requests with invalid MIME types, potentially leading to cross-site scripting...

6.1CVSS5.6AI score0.00166EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-5350

Malware in sbrugna...

5.5CVSS5.1AI score0.0015EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-5352

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-3386

Malware in sbrugna...

8.8CVSS8.8AI score0.00168EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-5351

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2018-3387

Malware in sbrugna...

6.1CVSS6.3AI score0.00353EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-4263

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00152EPSS

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-20016

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00166EPSS

RedhatCVE•added 2025/07/06 12:18 p.m.•2 views

CVE-2025-7066

6.1CVSS5.7AI score0.00166EPSS

Exploits0References1

NVD•added 2025/07/04 12:15 p.m.•2 views

CVE-2025-7066

6.1CVSS0.00166EPSS

Vulnrichment•added 2025/07/04 12:2 p.m.•2 views

CVE-2025-7066 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS5.7AI score0.00166EPSS

Cvelist•added 2025/07/04 12:2 p.m.•5 views

CVE-2025-7066 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS0.00166EPSS

CVE•added 2025/07/04 12:2 p.m.•15 views

CVE-2025-7066

CVE-2025-7066 details a MIME-type check bypass in Jirafeau that could allow browser previews to misuse text/html via crafted MIME types (e.g., image/png,text/html). Connected documents extend this to CVE-2026-1466, describing a bypass via invalid MIME types (image) during preview, which triggers ...

6.1CVSS5.7AI score0.00166EPSS

Exploits0References3Affected Software1

OSV•added 2025/07/04 12:2 p.m.•2 views

CVE-2025-7066 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Jirafeau

6.1CVSS5.4AI score0.00166EPSS

Exploits0References5

Positive Technologies•added 2025/07/04 12:0 a.m.•0 views

PT-2025-27947

Name of the Vulnerable Software and Affected Versions: Jirafeau affected versions not specified Description: The issue concerns a MIME Type Bypass Cross-Site Scripting vulnerability in Jirafeau. Normally, Jirafeau prevents browser preview for text files to prevent potential cross-site scripting...

6.1CVSS6.3AI score0.00166EPSS

Exploits0References11

CNNVD•added 2025/07/04 12:0 a.m.•1 views

Jirafeau 跨站脚本漏洞

Jirafeau is an easy way to upload files by the individual developer Jérôme Jutteau. Jirafeau suffers from a cross-site scripting vulnerability that stems from a MIME type check bypass that could lead to a cross-site scripting attack...

6.1CVSS5.9AI score0.00166EPSS