Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1935 matches found

CVE
CVEadded 2026/02/19 10:21 p.m.4 views

CVE-2025-8055

OpenText XM Fax is affected by a Server-Side Request Forgery (SSRF) in version 24.2. The vulnerability permits blind SSRF to other systems reachable from the XM Fax server. The linked documents confirm the issue and affected product/version but do not provide exploitation details or a remediation...

5.3CVSS5.5AI score0.00044EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/02/19 10:21 p.m.18 views

CVE-2025-8055 SSRF vulnerability have been discovered in OpenText™ XM Fax

Server-Side Request Forgery SSRF vulnerability in OpenText™ XM Fax allows Server Side Request Forgery. The vulnerability could allow an attacker to perform blind SSRF to other systems accessible from the XM Fax server. This issue affects XM Fax: 24.2...

5.3CVSS0.00044EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/19 10:21 p.m.1 views

CVE-2025-8055 SSRF vulnerability have been discovered in OpenText™ XM Fax

Server-Side Request Forgery SSRF vulnerability in OpenText™ XM Fax allows Server Side Request Forgery. The vulnerability could allow an attacker to perform blind SSRF to other systems accessible from the XM Fax server. This issue affects XM Fax: 24.2...

5.3CVSS5.4AI score0.00044EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/19 7:21 p.m.3 views

CVE-2025-15579

Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injection. The vulnerability could lead to remote code execution, denial of service, or privilege escalation. This issue affects Directory Services: before 24.4.16, from 25.1 before 25.1.9, from 25.2...

9.5CVSS6.2AI score0.00492EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.1 views

PT-2026-20944

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText™ Web Site Management Server allows Reflected XSS. The vulnerability could allow injecting malicious JavaScript inside URL parameters that was then rendered with the preview of the...

7CVSS5.5AI score0.00014EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.3 views

PT-2026-20946

Server-Side Request Forgery SSRF vulnerability in OpenText™ XM Fax allows Server Side Request Forgery. The vulnerability could allow an attacker to perform blind SSRF to other systems accessible from the XM Fax server. This issue affects XM Fax: 24.2...

5.3CVSS5.5AI score0.00044EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.3 views

PT-2026-20945

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in OpenText™ XM Fax allows Path Traversal. The vulnerability could allow an attacker to arbitrarily disclose content of files on the local filesystem. This issue affects XM Fax: 24.2...

7.1CVSS5.5AI score0.00068EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.3 views

PT-2026-20947

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText™ Web Site Management Server allows Stored XSS. The vulnerability could execute malicious scripts on the client side when the download query parameter is removed from the file URL,...

7.5CVSS5.6AI score0.00014EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.4 views

OpenText Web Site Management Server 跨站请求伪造漏洞

OpenText Web Site Management Server is an enterprise content management system provided by OpenText Corporation in Canada. Versions 16.7.0 and 16.7.1 of OpenText Web Site Management Server contain cross-site request forgeing vulnerabilities. These vulnerabilities are due to susceptibility to...

6.5CVSS5.7AI score0.00007EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.4 views

OpenText XM Fax 路径遍历漏洞

OpenText XM Fax is an IP fax software developed by OpenText Corporation in Canada. Version 24.2 of OpenText XM Fax contains a path traversal vulnerability. This vulnerability arises due to improper path restrictions, which may allow for path traversal attacks, thereby exposing content from the...

7.5CVSS5.8AI score0.00068EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.4 views

PT-2026-20948

User Interface UI Misrepresentation of Critical Information vulnerability in OpenText™ Directory Services allows Cache Poisoning. The vulnerability could be exploited by a bad actor to inject manipulated text into the OpenText application, potentially misleading users. This issue affects Director...

5.3CVSS5.5AI score0.00013EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.3 views

PT-2026-20943

Cross-Site Request Forgery CSRF vulnerability in OpenText™ Web Site Management Server allows Cross Site Request Forgery. The vulnerability could make a user, with active session inside the product, click on a page that contains this malicious HTML triggering to perform changes unconsciously. This...

5.9CVSS5.5AI score0.00007EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.4 views

OpenText Directory Services(OTDS) 安全漏洞

OpenText Directory Services OTDS is an information management solution provided by the Canadian company OpenText. It integrates OpenText products and solutions with the company’s enterprise directory infrastructure. Vulnerabilities exist in versions 20.4.1 to 25.2 of OpenText Directory Services,...

5.3CVSS5.8AI score0.00013EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.3 views

OpenText Web Site Management Server 跨站脚本漏洞

OpenText Web Site Management Server is an enterprise content management system provided by OpenText Corporation in Canada. Versions 16.7.0 and 16.7.1 of OpenText Web Site Management Server contain cross-site scripting vulnerabilities. These vulnerabilities stem from improper handling of inputs...

7CVSS5.6AI score0.00014EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.4 views

OpenText Web Site Management Server 跨站脚本漏洞

OpenText Web Site Management Server is an enterprise content management system provided by OpenText Corporation in Canada. Versions 16.7.X, 16.8, and 16.8.1 of OpenText Web Site Management Server have cross-site scripting vulnerabilities. These vulnerabilities stem from improper handling of input...

7.5CVSS5.7AI score0.00014EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/02/19 12:0 a.m.3 views

OpenText XM Fax 安全漏洞

OpenText XM Fax is an IP fax software developed by OpenText Corporation in Canada. Version 24.2 of OpenText XM Fax contains a security vulnerability. This vulnerability arises from improper input handling and may lead to server-side request forgeing attacks, allowing blind SRFI to be executed on...

5.3CVSS5.8AI score0.00044EPSS
Exploits0References1
NVD
NVDadded 2026/02/18 4:22 p.m.2 views

CVE-2025-15579

Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injection. The vulnerability could lead to remote code execution, denial of service, or privilege escalation. This issue affects Directory Services: before 24.4.16, from 25.1 before 25.1.9, from 25.2...

9.5CVSS0.00492EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/18 2:57 p.m.2 views

CVE-2025-15579

Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injection. The vulnerability could lead to remote code execution, denial of service, or privilege escalation. This issue affects Directory Services: before 24.4.16, from 25.1 before 25.1.9, from 25.2...

9.5CVSS6.2AI score0.00492EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/02/18 2:57 p.m.18 views

CVE-2025-15579 An Insecure Deserialization vulnerability has been discovered in OpenText™ Directory Services.

Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injection. The vulnerability could lead to remote code execution, denial of service, or privilege escalation. This issue affects Directory Services: before 24.4.16, from 25.1 before 25.1.9, from 25.2...

9.5CVSS0.00492EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/18 2:57 p.m.1 views

CVE-2025-15579 An Insecure Deserialization vulnerability has been discovered in OpenText™ Directory Services.

Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injection. The vulnerability could lead to remote code execution, denial of service, or privilege escalation. This issue affects Directory Services: before 24.4.16, from 25.1 before 25.1.9, from 25.2...

9.5CVSS6.2AI score0.00492EPSS
Exploits0References1
Rows per page
Query Builder