Lucene search
K

403 matches found

RedhatCVE
RedhatCVE
added 2025/12/11 12:3 a.m.10 views

CVE-2025-63317

Todoist v8896 is vulnerable to Cross Site Scripting XSS in /api/v1/uploads. Uploaded SVG files have no sanitization applied, so embedded JavaScript executes when a user opens the attachment from a task/comment...

5.4CVSS6.1AI score0.00182EPSS
Exploits1References1
NVD
NVD
added 2025/12/05 6:16 a.m.11 views

CVE-2025-12163

The Omnipress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to...

6.4CVSS0.00309EPSS
Exploits2References8
Vulnrichment
Vulnrichment
added 2025/12/01 12:0 a.m.2 views

CVE-2025-63317

Todoist v8896 is vulnerable to Cross Site Scripting XSS in /api/v1/uploads. Uploaded SVG files have no sanitization applied, so embedded JavaScript executes when a user opens the attachment from a task/comment...

5.7AI score0.00182EPSS
Exploits1References1
CVE
CVE
added 2025/10/27 7:39 a.m.18 views

CVE-2025-11682

The CVE-2025-11682 issue affects Perx Customer Engagement & Loyalty Platform, specifically the LMT Dashboard, with versions prior to 4.617.4. Root cause: improper sanitization of uploaded SVGs, allowing an authenticated attacker to upload a malicious SVG to a campaign. When other users view the i...

7.1CVSS5.7AI score0.00179EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/17 2:58 a.m.8 views

CVE-2025-10700

The Ally – Web Accessibility & Usability plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.0. This is due to missing or incorrect nonce validation on the enableunfilteredfilesupload function. This makes it possible for unauthenticated...

4.3CVSS5.4AI score0.0018EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-7732

Malware in sbrugna...

6.1CVSS6.3AI score0.00713EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-14336

Malware in sbrugna...

7.8CVSS5.1AI score0.01242EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-3027

Malware in sbrugna...

7.1CVSS6.1AI score0.02834EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3694

Malware in sbrugna...

5CVSS6.1AI score0.02521EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-25630

Malware in sbrugna...

6.1CVSS6.1AI score0.01372EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3114

Malware in sbrugna...

6.8CVSS8.9AI score0.04418EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-2240

Malware in sbrugna...

4.3CVSS6.1AI score0.01832EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-26966

Malware in sbrugna...

5.4CVSS5.6AI score0.662EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23507

Malware in sbrugna...

6.1CVSS6.3AI score0.011EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0117

Malware in sbrugna...

8.2CVSS6.2AI score0.02456EPSS
Exploits0References33
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-4392

Malware in sbrugna...

5CVSS6.1AI score0.022EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12592

Malware in sbrugna...

6.1CVSS4.8AI score0.01273EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3178

Malware in sbrugna...

6.8CVSS9.3AI score0.01343EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-7097

Malware in sbrugna...

5.5CVSS5.6AI score0.01389EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-5421

Malware in sbrugna...

5.4CVSS5.6AI score0.00531EPSS
Exploits1References2
Rows per page
Query Builder