Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2034 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-30825

Malicious code in bioql PyPI...

6.6AI score
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-53440

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00248EPSS
Exploits0References2
OSV
OSVadded 2025/10/03 7:28 p.m.4 views

RLSA-2025:16260 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Sandbox escape due to use-after-free in the Graphics: Canvas2D component CVE-2025-10527 firefox: thunderbird: Incorrect boundary conditions in the...

7.5CVSS7.2AI score0.00136EPSS
Exploits0References8
NVD
NVDadded 2025/10/03 4:16 p.m.3 views

CVE-2025-10728

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS0.0001EPSS
Exploits0References1
OSV
OSVadded 2025/10/03 4:16 p.m.3 views

DEBIAN-CVE-2025-10728

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS5.3AI score0.0001EPSS
Exploits0References1
OSV
OSVadded 2025/10/03 4:16 p.m.0 views

UBUNTU-CVE-2025-10728

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS7.3AI score0.0001EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/10/03 2:35 p.m.8 views

CVE-2025-10728 Uncontrolled recursion in Qt SVG module

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS0.0001EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2025/10/03 2:35 p.m.4 views

CVE-2025-10728

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS5.2AI score0.0001EPSS
Exploits0
OSV
OSVadded 2025/10/03 2:15 p.m.3 views

CVE-2025-60454

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the image management module, specifically in the app\system\img\admin\imgadmin.class.php component. The vulnerability allows attackers to upload malicious SVG files containi...

6.1CVSS5.8AI score0.00011EPSS
Exploits1References1
NVD
NVDadded 2025/10/03 2:15 p.m.1 views

CVE-2025-60454

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the image management module, specifically in the app\system\img\admin\imgadmin.class.php component. The vulnerability allows attackers to upload malicious SVG files containi...

6.1CVSS0.00011EPSS
Exploits1References1
OSV
OSVadded 2025/10/03 2:15 p.m.2 views

CVE-2025-60451

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\uploadify.class.php component, specifically in the website settings module...

6.1CVSS5.8AI score0.00037EPSS
Exploits1References1
NVD
NVDadded 2025/10/03 2:15 p.m.2 views

CVE-2025-60452

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the download management module, specifically in the app\system\download\admin\downloadadmin.class.php component. The vulnerability allows attackers to upload malicious SVG...

6.1CVSS0.00037EPSS
Exploits1References1
OSV
OSVadded 2025/10/03 2:15 p.m.2 views

CVE-2025-60445

A stored Cross-Site Scripting XSS vulnerability has been discovered in XunRuiCMS version 4.7.1. The vulnerability exists due to insufficient validation of SVG file uploads in the dayrui/Fcms/Library/Upload.php component, allowing attackers to inject malicious JavaScript code that executes when th...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2025/10/03 2:15 p.m.3 views

CVE-2025-60445

A stored Cross-Site Scripting XSS vulnerability has been discovered in XunRuiCMS version 4.7.1. The vulnerability exists due to insufficient validation of SVG file uploads in the dayrui/Fcms/Library/Upload.php component, allowing attackers to inject malicious JavaScript code that executes when th...

6.1CVSS0.00037EPSS
Exploits1References1
OSV
OSVadded 2025/10/03 2:15 p.m.3 views

CVE-2025-60448

A stored Cross-Site Scripting XSS vulnerability has been discovered in Emlog Pro 2.5.19. The vulnerability exists due to insufficient validation of SVG file uploads in the /admin/media.php component, allowing attackers to upload malicious SVG files containing JavaScript code that executes when th...

6.1CVSS6.1AI score
Exploits0References1
NVD
NVDadded 2025/10/03 2:15 p.m.2 views

CVE-2025-60453

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists in the column management module, specifically in the app\system\column\admin\index.class.php component. The vulnerability allows attackers to upload malicious SVG files...

6.1CVSS0.00011EPSS
Exploits1References1
NVD
NVDadded 2025/10/03 2:15 p.m.1 views

CVE-2025-60450

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\editor\Uploader.class.php component. This security flaw allows attackers to...

6.1CVSS0.00043EPSS
Exploits1References1
NVD
NVDadded 2025/10/03 2:15 p.m.3 views

CVE-2025-60451

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\uploadify.class.php component, specifically in the website settings module...

6.1CVSS0.00037EPSS
Exploits1References1
OSV
OSVadded 2025/10/03 2:15 p.m.2 views

CVE-2025-60450

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\editor\Uploader.class.php component. This security flaw allows attackers to...

6.1CVSS5.8AI score0.00043EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/10/03 12:0 a.m.2 views

CVE-2025-60450

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\editor\Uploader.class.php component. This security flaw allows attackers to...

5.7AI score0.00043EPSS
Exploits1References1
Rows per page
Query Builder