Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

60 matches found

RedhatCVE
RedhatCVEadded 2026/03/26 3:19 p.m.1 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.4CVSS5.8AI score0.00039EPSS
Exploits1References1
EUVD
EUVDadded 2026/03/20 9:31 p.m.1 views

EUVD-2025-208909

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.8AI score0.00039EPSS
Exploits1References3
NVD
NVDadded 2026/03/20 8:16 p.m.2 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.4CVSS0.00039EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/03/20 12:0 a.m.2 views

SyncFusion 安全漏洞

SyncFusion is a set of enterprise-level UI component development tools provided by the American company SyncFusion. Version 30.1.37 of SyncFusion contains a security vulnerability. This vulnerability stems from the Document-Editor’s reply comment field and Chat-UI chat messages, and could lead to...

5.4CVSS5.6AI score0.00039EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/03/20 12:0 a.m.3 views

PT-2026-26666

CVE-2025-63260 SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message. https://t.co/lkPWuPDbql...

5.8AI score0.00039EPSS
Exploits1References4
CVE
CVEadded 2026/03/20 12:0 a.m.3 views

CVE-2025-63260

CVE-2025-63260 affects SyncFusion 30.1.37 . The vulnerability is a Cross Site Scripting (XSS) issue arising in the product’s UI components: the Document-Editor reply to comment field and the Chat-UI chat message . The confirmed impact is XSS, enabling injection of script via user-supplied input i...

5.4CVSS5.8AI score0.00039EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/20 12:0 a.m.2 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.8AI score0.00039EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/03/20 12:0 a.m.16 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

0.00039EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-5779

Malware in sbrugna...

9.3CVSS8.8AI score0.00052EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-52870

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00264EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-53509

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00259EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-52869

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00179EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-30358

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01278EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-30359

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01278EPSS
Exploits2References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in test-syncfusion-bridge (npm)

The package test-syncfusion-bridge was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-36701 Malicious code in test-syncfusion-bridge (npm)

The package test-syncfusion-bridge was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 6:18 a.m.4 views

CVE-2024-55969

DocIO in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 throws XMLException during the resaving of a DOCX document with an external reference XML, aka I640714...

9.1CVSS7AI score0.00179EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 6:18 a.m.2 views

CVE-2024-55970

File Manager in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 has a traversal issue that is related to the request parameter, aka I644734...

7.5CVSS6.9AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:29 a.m.5 views

CVE-2023-26563

The Syncfusion EJ2 Node File Provider 0102271 is vulnerable to filesystem-server.js directory traversal. As a result, an unauthenticated attacker can: - On Windows, list files in any directory, read any file, delete any file, upload any file to any directory accessible by the web server. - On...

9.8CVSS7AI score0.01278EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:29 a.m.5 views

CVE-2023-26564

The Syncfusion EJ2 ASPCore File Provider 3ac357f is vulnerable to Models/PhysicalFileProvider.cs directory traversal. As a result, an unauthenticated attacker can list files within a directory, download any file, or upload any file to any directory accessible by the web server...

9.8CVSS7.1AI score0.00369EPSS
Exploits1References1
Rows per page
Query Builder