Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8204 matches found

Tenable Nessus
Tenable Nessusadded 2025/10/14 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-52885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions...

8.6CVSS5.4AI score0.00156EPSS
Exploits0References3
Redos
Redosadded 2025/10/14 12:0 a.m.5 views

ROS-20251014-09

A vulnerability in the SVG component of Mozilla Firefox, Firefox ESR and Thunderbird email client is related to an integer overflow. with integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code. remotely to execute arbitrary code...

8.8CVSS7.8AI score0.00687EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2025/10/13 11:23 p.m.1 views

SUSE CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

7.3CVSS6.7AI score0.00156EPSS
Exploits0References7
Ubuntu
Ubuntuadded 2025/10/13 2:39 p.m.3 views

USN-7818-1: Apache Subversion vulnerability

It was discovered that Apache Subversion incorrectly parsed control characters in filenames. An attacker could possibly use this issue to commit a corrupted revision to a repository, leading to a denial of service...

4.3CVSS5.5AI score0.01905EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/10/13 8:22 a.m.2 views

CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS6.6AI score0.00156EPSS
Exploits0References6
CVE
CVEadded 2025/10/13 6:0 a.m.19 views

CVE-2025-9698

CVE-2025-9698 refers to The Plus Addons for Elementor WordPress plugin. The vulnerability is a Stored Cross-Site Scripting (XSS) caused by unsanitized SVG file contents, exploitable by an Author+ (minimum Author) with SVG content uploaded or processed. Affected versions are before 6.3.16; remedia...

6.8CVSS5.2AI score0.00281EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/13 6:0 a.m.6 views

CVE-2025-9698 The Plus Addons for Elementor < 6.3.16 - Author+ Stored XSS

The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks...

0.00281EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/13 3:30 a.m.3 views

EUVD-2025-33926

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

5.8CVSS6.1AI score0.00253EPSS
Exploits0References5
CVE
CVEadded 2025/10/13 1:32 a.m.9 views

CVE-2025-11655

Total.js Flow (up to 673ef9144dd25d4f4fd4fdfda5af27f230198924) is affected by a flaw in the SVG File Handler component where manipulation enables unrestricted file upload. The remaining details point to a remote attack path with no version details available in the initial description, but Red Hat...

5.8CVSS6.3AI score0.00253EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/10/13 1:32 a.m.12 views

CVE-2025-11655 Total.js Flow SVG File unrestricted upload

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

5.8CVSS0.00253EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/10/11 12:20 a.m.4 views

CVE-2025-60880

An authenticated stored XSS vulnerability exists in the Bagisto 2.3.6 admin panel's product creation path, allowing an attacker to upload a crafted SVG file containing malicious JavaScript code. This vulnerability can be exploited by an authenticated admin user to execute arbitrary JavaScript in...

8.3CVSS6.6AI score0.00388EPSS
Exploits1References1
NVD
NVDadded 2025/10/10 11:15 p.m.5 views

CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS0.00156EPSS
Exploits0References4
OSV
OSVadded 2025/10/10 11:15 p.m.1 views

DEBIAN-CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS5.3AI score0.00156EPSS
Exploits0References1
OSV
OSVadded 2025/10/10 11:15 p.m.1 views

UBUNTU-CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS7.2AI score0.00156EPSS
Exploits0References6
Snyk
Snykadded 2025/10/10 10:41 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the StructTreeRoot class due to the use of raw pointers to elements of a std::vector, which can result in dangling pointers when the vector is resized. An attacker can potentially execute arbitrary code or cause a deni...

8.6CVSS7.1AI score0.00156EPSS
Exploits0References3
CVE
CVEadded 2025/10/10 10:11 p.m.32 views

CVE-2025-52885

CVE-2025-52885 affects Poppler before 25.10.0, where a use-after-free (write) vulnerability arises from raw pointers to elements of a std::vector stored in refToParentMap within StructTreeRoot. Pointers may become dangling when the vector resizes, due to vector reallocation moving elements and in...

8.6CVSS6.3AI score0.00156EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/10/10 10:11 p.m.6 views

CVE-2025-52885 GHSL-2025-042: Poppler has Use-After-Free

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS0.00156EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/10/10 10:11 p.m.2 views

CVE-2025-52885 GHSL-2025-042: Poppler has Use-After-Free

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS6.3AI score0.00156EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/10 10:11 p.m.4 views

EUVD-2025-33795

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS6.2AI score0.00156EPSS
Exploits0References3
AlpineLinux
AlpineLinuxadded 2025/10/10 10:11 p.m.5 views

CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

8.6CVSS6.7AI score0.00156EPSS
Exploits0References4
Rows per page
Query Builder