Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

405 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/31 3:0 p.m.5 views

Malicious code in telegreph (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 cca72e5a6a205d657e13d29aee3f5448061afd17f222f11db168ef8a20744992 The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

7.1AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/12/30 12:0 a.m.3 views

PT-2025-54174

Name of the Vulnerable Software and Affected Versions sunhailin12315 product-review 商品评价系统 versions up to 91ead6890b4065bb45b7602d0d73348e75cb4639 Description A security flaw exists in the sunhailin12315 product-review 商品评价系统. The issue is related to cross site scripting, which can be triggered b...

5.1CVSS6.2AI score0.00019EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/26 8:3 p.m.5 views

Malicious code in telegrem (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f2186dc29d07dc851d756bae0b5d080ebe5923efe6654fdb4aa9ec55bbba9b6a The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

7.1AI score
Exploits0References2
OSV
OSVadded 2025/12/26 8:3 p.m.3 views

MAL-2025-192943 Malicious code in telegrem (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f2186dc29d07dc851d756bae0b5d080ebe5923efe6654fdb4aa9ec55bbba9b6a The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

7AI score
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/12/23 12:25 a.m.3 views

CVE-2025-65270

Reflected cross-site scripting XSS vulnerability in ClinCapture EDC 3.0 and 2.2.3, allowing an unauthenticated remote attacker to execute JavaScript code in the context of the victim's browser...

6.1CVSS6.2AI score0.00058EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/12/18 12:0 a.m.1 views

CVE-2025-63949

A Reflected Cross-Site Scripting XSS vulnerability in yohanawi Hotel Management System commit 87e004a allows a remote attacker to execute arbitrary web script via the 'error' parameter in pages/room.php...

5.8AI score0.00056EPSS
Exploits1References2
NVD
NVDadded 2025/12/09 6:15 p.m.2 views

CVE-2025-34409

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the Failed parameter of /Mondo/lang/sys/Forms/MAI/AddRecipientsResult.aspx. The Failed value is not properly sanitized when processed via a GET request and is reflected in the response, allowing an...

6.1CVSS0.00014EPSS
Exploits0References3
NVD
NVDadded 2025/12/09 6:15 p.m.1 views

CVE-2025-34400

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the AddressesTo parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The AddressesTo value is not properly sanitized when processed via a GET request and is reflected within a block in the response. B...

6.1CVSS0.00011EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/12/09 6:9 p.m.17 views

CVE-2025-34400 MailEnable < 10.54 Reflected XSS in AddressesTo Parameter of AddressBook.aspx

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the AddressesTo parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The AddressesTo value is not properly sanitized when processed via a GET request and is reflected within a block in the response. B...

5.3CVSS0.00011EPSS
Exploits0References3
EUVD
EUVDadded 2025/12/09 6:8 p.m.2 views

EUVD-2025-202192

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the FieldCc parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The FieldCc value is not properly sanitized when processed via a GET request and is reflected inside a block in the JavaScript variable...

6.1CVSS5.3AI score0.00011EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.4 views

PT-2025-50140

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description The software contains a reflected cross-site scripting XSS issue in the FieldBcc parameter of the ''/Mondo/lang/sys/Forms/AddressBook.aspx'' endpoint. The FieldBcc value is not properly sanitized...

6.1CVSS5.6AI score0.00011EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2025/12/04 12:0 a.m.3 views

Adobe Experience Manager (AEM) Groovy Console

The remote Adobe Experience Manager AEM expose a Groovy console that allows users to execute arbitrary Groovy scripts on the server. This can lead to remote code execution and complete compromise of the AEM instance and the underlying server. No source data...

8.4AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2025/11/19 12:0 a.m.3 views

PT-2025-47467

Name of the Vulnerable Software and Affected Versions DataDirect Connect for JDBC for Amazon Redshift versions through 6.0.0.001392 DataDirect Connect for JDBC for Apache Cassandra versions through 6.0.0.000805 DataDirect Connect for JDBC for Hive versions through 6.0.1.001499 DataDirect Connect...

8.6CVSS6.8AI score0.00111EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2005-1834

Malware in sbrugna...

4.3CVSS6.4AI score0.0043EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-3514

Malware in sbrugna...

5.8CVSS6.4AI score0.00622EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2002-1299

Malware in sbrugna...

6.8CVSS6.2AI score0.01852EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-3097

Malware in sbrugna...

7.5CVSS6.3AI score0.00772EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2004-0583

Malware in sbrugna...

6.8CVSS6.1AI score0.01052EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2003-0486

Malware in sbrugna...

6.8CVSS6.4AI score0.00519EPSS
Exploits3References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2002-2171

Malware in sbrugna...

4.3CVSS6.4AI score0.01003EPSS
Exploits1References6
Rows per page
Query Builder