Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/04/08 12:0 a.m.4 views

PT-2026-33239

Name of the Vulnerable Software and Affected Versions Drupal Orejime versions 0.0.0 through 2.0.15 Description Improper neutralization of input during web page generation allows Cross-Site Scripting XSS. The IframeConsent element writes HTML attributes without escaping their values. An attacker...

5.9AI score0.00033EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2015-3798

Malware in sbrugna...

5CVSS7.5AI score0.00472EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2024/11/29 12:0 a.m.6 views

PT-2024-36055

Name of the Vulnerable Software and Affected Versions: Backdrop CMS versions prior to 1.28.4 Backdrop CMS versions 1.29.x prior to 1.29.2 Description: The issue allows for Cross Site Scripting XSS via an SVG document, if the SVG tag is allowed for a text format. This occurs in Backdrop CMS when a...

6.1CVSS5.9AI score0.00568EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2023/04/24 12:0 a.m.3 views

PT-2023-23121 · Unknown · Backdrop Cms

Name of the Vulnerable Software and Affected Versions: Backdrop CMS versions prior to 1.24.2 Description: A stored Cross-site scripting XSS issue in Text Editors and Formats allows remote attackers to inject arbitrary web script or HTML via the name parameter. When a user is editing any content...

4.8CVSS5.5AI score0.00206EPSS
Exploits1References10
NVD
NVDadded 2015/08/16 11:59 p.m.7 views

CVE-2015-3762

The Text Formats component in Apple OS X before 10.10.5, as used in TextEdit, allows remote attackers to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...

5CVSS6.1AI score0.00472EPSS
Exploits0References4
Prion
Prionadded 2015/08/16 11:59 p.m.10 views

Xxe

The Text Formats component in Apple OS X before 10.10.5, as used in TextEdit, allows remote attackers to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...

5CVSS6.6AI score0.00472EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2015/08/16 11:0 p.m.54 views

CVE-2015-3762

CVE-2015-3762 affects Apple OS X Text Formats/TextEdit prior to 10.10.5. The issue is an XXE in XML parsing that can allow a remote attacker to read arbitrary files via a text file containing an XML external entity declaration with an entity reference. Root cause: XML External Entity handling in ...

5CVSS8.3AI score0.00472EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2015/08/16 11:0 p.m.16 views

CVE-2015-3762

The Text Formats component in Apple OS X before 10.10.5, as used in TextEdit, allows remote attackers to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...

8.5AI score0.00472EPSS
Exploits0References4
Rows per page
Query Builder