CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CNNVD•added 2026/03/05 12:0 a.m.•4 views

Rakuten Viber Desktop 安全漏洞

Rakuten Viber Desktop is a messaging application developed by Luxembourg-based Viber Inc. There is a security vulnerability in Rakuten Viber Desktop, which stems from the use of a static and predictable TLS ClientHello fingerprint. This vulnerability may lead to the identification and prevention ...

9.8CVSS7.5AI score0.0002EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-29050

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00042EPSS

Exploits0References2

RedhatCVE•added 2025/09/14 12:10 a.m.•7 views

CVE-2025-55996

Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface...

6.3CVSS7.1AI score0.00042EPSS

Exploits0References1

OSV•added 2025/09/12 3:15 p.m.•2 views

CVE-2025-55996

Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface...

6.3CVSS5.8AI score

Exploits0References1

NVD•added 2025/09/12 3:15 p.m.•2 views

CVE-2025-55996

Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface...

6.3CVSS0.00042EPSS

Exploits0References1

CNNVD•added 2025/09/12 12:0 a.m.•2 views

Rakuten Viber Desktop 安全漏洞

Rakuten Viber Desktop is an instant messaging software from Viber Luxembourg. A security vulnerability exists in Rakuten Viber Desktop version 25.6.0, which stems from improper handling of text parameters in the message compose or forward interface, which could lead to an HTML injection attack...

6.3CVSS6.9AI score0.00042EPSS

Exploits0References2

Cvelist•added 2025/09/12 12:0 a.m.•5 views

CVE-2025-55996

Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface...

0.00042EPSS

Exploits0References1

Positive Technologies•added 2025/09/12 12:0 a.m.•2 views

PT-2025-37322

Name of the Vulnerable Software and Affected Versions: Viber Desktop version 25.6.0 Description: Viber Desktop version 25.6.0 is susceptible to HTML Injection through the text parameter within the message compose/forward interface. Recommendations: As a temporary workaround, sanitize the text...

6.3CVSS6.8AI score0.00042EPSS

Exploits0References5

Vulnrichment•added 2025/09/12 12:0 a.m.•2 views

CVE-2025-55996

Viber Desktop 25.6.0 is vulnerable to HTML Injection via the text parameter of the message compose/forward interface...

6.7AI score0.00042EPSS

Exploits0References1

CVE•added 2025/09/12 12:0 a.m.•9 views

CVE-2025-55996

Viber Desktop 25.6.0 is affected by a HTML Injection vulnerability caused by improper handling of the text parameter in the message compose/forward interface. The issue can be triggered via the text field and has a CVSSv3.1 base score of 6.3 (Medium) with NETWORK attack vector, requiring user int...

6.3CVSS6.7AI score0.00042EPSS

Exploits0References1Affected Software1

Hacker One•added 2020/07/27 2:43 p.m.•66 views

Internet Bug Bounty: Uncovering file quarantine and UX security issues in macOS apps ( .terminal, .fileloc and .url)

Slides : https://docs.google.com/presentation/d/19WeQbqcOKnrSv1I3Z4sm-oNAf6IVzHwRyQP4i9BvY/editslide=id.g758ad3e04223231 See Blogpost for more details - https://medium.com/@metnew/exploiting-popular-macos-apps-with-a-single-terminal-file-f6c2efdfedaa Summary Popular macOS apps with a file-sharing...

6.8CVSS6.6AI score0.03167EPSS

Exploits0

OSV•added 2019/06/03 1:29 a.m.•0 views

CVE-2019-12569

A vulnerability in Viber before 10.7.0 for Desktop Windows could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI. An attacker could exploit this vulnerability by convincing a targeted user to follow...

7.8CVSS7.3AI score0.0322EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by