Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.6 views

Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok

In doProlog, within xmlparse.c of the Expat library also known as libexpat, there is an integer overflow issue related to mgroupSize before version 2.4.3...

8.1CVSS8.1AI score0.03759EPSS
Exploits1References2
CVE
CVEadded 2026/04/20 8:37 p.m.20 views

CVE-2026-5928

CVE-2026-5928 affects glibc’s ungetwc on FILE streams with wide characters where overlaps between single-byte and multi-byte encodings occur, in version 2.43 or earlier. A bug in the wide character pushback (_IO_wdefault_pbackfail) causes ungetwc() to operate on the regular input buffer (fp->_...

7.5CVSS6AI score0.00345EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2026/02/21 6:54 a.m.9 views

CVE-2026-27458

LinkAce versions 2.4.2 and earlier are affected by a Stored XSS in the Atom feed at /lists/feed. An authenticated user can inject a CDATA-breaking payload into a list description, escaping the CDATA and injecting an SVG element into the Atom XML, which the browser parses and executes as JavaScrip...

8.7CVSS6AI score0.00218EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/06 3:55 p.m.2 views

CVE-2025-60204 WordPress WooCommerce Store Toolkit plugin <= 2.4.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Josh Kohlbach WooCommerce Store Toolkit woocommerce-store-toolkit allows PHP Local File Inclusion.This issue affects WooCommerce Store Toolkit: from n/a through = 2.4.3...

7.5CVSS6.7AI score0.00362EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/15 11:59 a.m.4 views

CVE-2025-26958 WordPress JetBlog plugin <= 2.4.3 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Crocoblock JetBlog jet-blog allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetBlog: from n/a through = 2.4.3...

7.5CVSS8.6AI score0.00296EPSS
Exploits0References1
CNVD
CNVDadded 2017/10/23 12:0 a.m.2 views

XnView Classic for Windows Buffer Overflow Vulnerability (CNVD-2017-32299)

XnView Classic for Windows is an image viewing software for Windows developed by French software developer Gougelet Pierre-Emmanuel. The software can be used to view, convert, organize and edit graphic and video files. A buffer overflow vulnerability exists in version 2.43 of XnView Classic for...

7.8CVSS8.1AI score0.01173EPSS
Exploits0References1
CNVD
CNVDadded 2017/10/23 12:0 a.m.1 views

XnView .dwg File Buffer Overflow Vulnerability

XnView Classic for Windows is an image viewing software for Windows developed by French software developer Gougelet Pierre-Emmanuel. The software can be used to view, convert, organize and edit graphic and video files. A buffer overflow vulnerability exists in version 2.43 of XnView Classic for...

7.8CVSS8.1AI score0.01222EPSS
Exploits0References1
Rows per page
Query Builder