Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

OSV
OSVadded 2026/04/01 9:43 a.m.0 views

CLEANSTART-2026-BT99405 Security fixes for CVE-2026-24051, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142 applied in versions: 1.29.2-r0, 1.29.2-r1

Multiple security vulnerabilities affect the temporal-server-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

7.5CVSS7.2AI score0.00044EPSS
Exploits0References11
Vulnrichment
Vulnrichmentadded 2024/10/07 8:15 p.m.11 views

CVE-2024-45060 Unauthenticated Cross-Site-Scripting (XSS) in sample file in PHPSpreadsheet

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. One of the sample scripts in PhpSpreadsheet is susceptible to a cross-site scripting XSS vulnerability due to improper handling of input where a number is expected leading to formula injection. The code in in...

7.1CVSS6.4AI score0.01275EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/10/07 8:9 p.m.17 views

CVE-2024-45291 Path traversal and Server-Side Request Forgery in HTML writer when embedding images is enabled in PHPSpreadsheet

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. It's possible for an attacker to construct an XLSX file that links images from arbitrary paths. When embedding images has been enabled in HTML writer with $writer-setEmbedImagestrue; those files will be included in th...

6.3CVSS8AI score0.0089EPSS
Exploits1References1
Patchstack
Patchstackadded 2024/04/09 2:45 a.m.2 views

WordPress Forminator plugin <= 1.29.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via forminator_form Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via forminatorform Shortcode vulnerability discovered by wesley wcraft in WordPress Plugin Forminator versions = 1.29.2...

6.4CVSS5.8AI score0.00127EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder