Lucene search
K

26 matches found

NVD
NVD
added 3 days ago8 views

CVE-2026-58524

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:2 p.m.8 views

CVE-2026-45462

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.14 views

CVE-2026-45464

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.0051EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.30 views

CVE-2026-45462

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS0.00505EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.19 views

CVE-2026-47638

Microsoft SharePoint (Office SharePoint) is affected by CVE-2026-47638 due to improper neutralization of input during web page generation, enabling an authorized attacker to spoof users over the network (XSS). The NVD entries describe this as a cross-site scripting vulnerability with network acce...

5.4CVSS5.4AI score0.00505EPSS
Exploits0References1Affected Software1
GithubExploit
GithubExploit
added 2026/06/09 11:16 a.m.59 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

CVE-2026-33829 - Security Vulnerability Quick Usage ba...

4.3CVSS5.7AI score0.03447EPSS
Exploits5
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.16 views

PT-2026-48030

Name of the Vulnerable Software and Affected Versions Microsoft Office SharePoint affected versions not specified Description Improper neutralization of input during web page generation leads to cross-site scripting, which allows an authorized attacker to perform spoofing over a network. Cross-si...

7.3CVSS6.8AI score0.00559EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.19 views

PT-2026-47955

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

4.6CVSS7.1AI score0.00505EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.19 views

PT-2026-40978

Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server 2016 Microsoft Exchange Server 2019 Microsoft Exchange Server Subscription Edition Description An improper neutralization of input during web page generation leads to a cross-site scripting XSS flaw in Outlook Web...

9.4CVSS7.2AI score0.0564EPSS
Exploits1References281
EUVD
EUVD
added 2026/05/12 6:30 p.m.9 views

EUVD-2026-29715

User interface ui misrepresentation of critical information in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.8AI score0.00285EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:59 p.m.6 views

CVE-2026-40416

User interface ui misrepresentation of critical information in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS5.8AI score0.00349EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/04/23 10:16 p.m.8 views

CVE-2026-32210

Server-side request forgery ssrf in Microsoft Dynamics 365 Online allows an unauthorized attacker to perform spoofing over a network...

9.3CVSS0.00584EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/04/14 4:57 p.m.2 views

CVE-2026-32202

Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS5.8AI score0.64095EPSS
Exploits3
AlpineLinux
AlpineLinux
added 2026/04/14 4:57 p.m.4 views

CVE-2026-32178

Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.8AI score0.02279EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/11 7:45 p.m.7 views

CVE-2026-21527

User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.5AI score0.09457EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7398

Server-side request forgery ssrf in Azure DevOps Server allows an authorized attacker to perform spoofing over a network...

6.5CVSS5.5AI score0.00961EPSS
Exploits0References2
OSV
OSV
added 2026/02/05 11:15 p.m.4 views

CVE-2026-0391

User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.8AI score0.00595EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/05 10:13 p.m.6 views

CVE-2026-0391

User interface ui misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.5AI score0.00595EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/01/22 11:15 p.m.6 views

CVE-2026-21264

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Account allows an unauthorized attacker to perform spoofing over a network...

9.3CVSS0.0037EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 5:44 p.m.5 views

CVE-2025-59244

External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS6.8AI score0.00746EPSS
Exploits0References1
Rows per page
Query Builder