CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Positive Technologies•added 2 days ago•6 views

PT-2026-47633

A weakness has been identified in Dcat-Admin up to 2.2.3-beta. This impacts the function editorMDUpload of the file /admin/dcat-api/editor-md/upload of the component User Setting Page. This manipulation of the argument editormd-image-file causes unrestricted upload. The attack can be initiated...

5.8CVSS5.1AI score0.00035EPSS

Exploits0References6

RedhatCVE•added 2026/02/17 2:44 a.m.•1 views

CVE-2025-65716

An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0.8.18 allows attackers to execute arbitrary code via uploading a crafted .Md file...

8.8CVSS6.1AI score0.00089EPSS

Exploits1References1

ATTACKERKB•added 2026/02/16 12:0 a.m.•3 views

CVE-2025-65716

An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0.8.18 allows attackers to execute arbitrary code via uploading a crafted .Md file...

6.1AI score0.00089EPSS

Exploits1References3

CNNVD•added 2024/05/01 12:0 a.m.•2 views

Typora 跨站脚本漏洞

Typora is an editor. A cross-site scripting vulnerability exists in Typora versions v1.0.0 through v1.7, which stems from a cross-site scripting vulnerability in the Markdown editor that can be exploited by an attacker to upload a Markdown file to execute arbitrary code...

7.3CVSS6.6AI score0.00178EPSS

Exploits1References2