Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

130 matches found

OSV
OSVadded 2026/03/31 11:12 p.m.1 views

GHSA-3H6J-9X8M-RG3G Graby has stored XSS via iframe srcdoc Attribute in htmLawed Sanitization Config

Summary Graby's cleanupXss function configures htmLawed with conflicting settings: safe=1 which removes combined with 'elements' = '+iframe-meta' which re-enables . htmLawed does not sanitize the srcdoc attribute, allowing injection of arbitrary JavaScript that executes when the content is render...

5.3CVSS6AI score
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/01/09 9:26 a.m.5 views

CVE-2023-4455

Cross-Site Request Forgery CSRF in GitHub repository wallabag/wallabag prior to 2.6.3...

6.5CVSS7AI score0.00153EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-2330

Malicious code in bioql PyPI...

5.7CVSS4.8AI score0.00143EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-0779

Malicious code in bioql PyPI...

6.5CVSS5.7AI score0.00162EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-0742

Malicious code in bioql PyPI...

5.4CVSS5.1AI score0.00163EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-2294

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00153EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-1980

Malicious code in bioql PyPI...

6.5CVSS4.7AI score0.00072EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-3229

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00079EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-4016

Malicious code in bioql PyPI...

4CVSS4.8AI score0.00453EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-29379

Malicious code in bioql PyPI...

6.6AI score
Exploits0References20
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-0617

Malicious code in bioql PyPI...

5.4CVSS4.9AI score0.00291EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-0603

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00153EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2023-0943

Malicious code in bioql PyPI...

7.3CVSS6.4AI score0.00291EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/23 5:40 a.m.2 views

CVE-2023-0735

Cross-Site Request Forgery CSRF in GitHub repository wallabag/wallabag prior to 2.5.4...

6.5CVSS6.6AI score0.00153EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:56 a.m.2 views

CVE-2023-0734

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4...

7.3CVSS6.5AI score0.00291EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:56 a.m.1 views

CVE-2023-0609

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3...

6.5CVSS5.7AI score0.00162EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:56 a.m.1 views

CVE-2023-0610

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3...

5.4CVSS5AI score0.00163EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:46 a.m.3 views

CVE-2023-0736

Cross-site Scripting XSS - Stored in GitHub repository wallabag/wallabag prior to 2.5.4...

5.4CVSS5.9AI score0.00291EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:15 a.m.3 views

CVE-2023-3566

A vulnerability was found in wallabag 2.5.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /config of the component Profile Config. The manipulation of the argument Name leads to allocation of resources. The exploit has been disclosed ...

6.5CVSS6.7AI score0.00072EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:55 a.m.6 views

CVE-2023-0737

wallabag version 2.5.2 contains a Cross-Site Request Forgery CSRF vulnerability that allows attackers to arbitrarily delete user accounts via the /account/delete endpoint. This issue is fixed in version 2.5.4...

6.5CVSS6.7AI score0.00079EPSS
Exploits1References1
Rows per page
Query Builder