Lucene search
K

1322 matches found

EUVD
EUVD
added 2026/03/25 6:31 p.m.5 views

EUVD-2026-15915

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bookly Bookly bookly-responsive-appointment-booking-tool allows Reflected XSS.This issue affects Bookly: from n/a through = 26.7...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/25 6:31 p.m.3 views

EUVD-2026-15636

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in skygroup Jaroti jaroti allows Reflected XSS.This issue affects Jaroti: from n/a through 1.4.8...

7.1CVSS5.8AI score0.0018EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/25 12:0 a.m.6 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-16149)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome, which can be exploited by attackers to bypass navigation restrictions via specially crafted HTML pages...

6.5CVSS5.8AI score0.0016EPSS
Exploits0
CNVD
CNVD
added 2026/03/25 12:0 a.m.7 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-16148)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome, which can be exploited by attackers to disclose cross-domain data via specially crafted HTML pages...

6.5CVSS5.7AI score0.00171EPSS
Exploits0
CNVD
CNVD
added 2026/03/25 12:0 a.m.4 views

Google Chrome Information Disclosure Vulnerability (CNVD-2026-16150)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an information disclosure vulnerability that can be exploited by attackers to disclose cross-domain data via specially crafted HTML pages...

3.1CVSS5.7AI score0.00164EPSS
Exploits0
CNVD
CNVD
added 2026/03/25 12:0 a.m.6 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-15411)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability caused by an incorrect security UI in PictureInPicture, which can be exploited by an attacker to perform UI spoofing via specially crafted HTML pages...

4.3CVSS5.9AI score0.00177EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.11 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions prior to 146.0.7680.153, there was a vulnerability related to input validation. This vulnerability stemmed from integer overflow in the ANGLE component, which could allow remote attackers to exploit heap corruption through...

8.8CVSS5.9AI score0.00253EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.15 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 146.0.7680.153 contained a security vulnerability. This vulnerability stemmed from the Network component allowing for the reuse of objects after they are released, which could enable remote attackers to...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.9 views

PT-2026-26266

CVE-2025-50001 Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in tagDiv tagDiv Composer allows Reflected XSS.This issue affects t… https://t.co/RqSBTIAqfO...

7.1CVSS5.8AI score0.00145EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/16 3:30 p.m.6 views

EUVD-2016-10825

Wowza Streaming Engine 4.5.0 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions by crafting malicious web pages. Attackers can trick logged-in administrators into visiting a malicious site that submits POST requests to the user edit endpoin...

6.9CVSS5.7AI score0.00156EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2026/03/13 11:42 a.m.4 views

CVE-2026-32403

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in toocheke Toocheke Companion toocheke-companion allows DOM-Based XSS.This issue affects Toocheke Companion: from n/a through = 1.194...

5.8AI score0.00161EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.7 views

OpenText Vertica 跨站脚本漏洞

OpenText Vertica is a relational database management system RDBMS from OpenText Canada. It can efficiently store massive amounts of data. OpenText Vertica has a cross-site scripting vulnerability, which stems from improper input during web page generation. This vulnerability may lead to reflectiv...

6.1CVSS5.6AI score0.00181EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.6 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability caused by an incorrect security UI in PictureInPicture, which can be exploited by an attacker to perform UI spoofing via specially crafted HTML pages...

4.3CVSS5.8AI score0.00177EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 146.0.7680.71 contained a resource management vulnerability. This vulnerability stemmed from a problem with the WindowDialog class, where objects were reclaimed and reused after their initi...

7.5CVSS7.1AI score0.00265EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/23 12:0 a.m.8 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a buffer overflow vulnerability, which stems from out-of-bounds reading and writing. This vulnerability allows remote attackers to execute out-of-bounds memory access through carefully crafted HTML pag...

9.8CVSS7.8AI score0.0034EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.11 views

PT-2026-20216

The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'vkExUnit sns title' parameter in all versions up to, and including, 9.112.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers,...

6.4CVSS5.7AI score0.0019EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.7 views

CVE-2025-66599

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Physical paths could be displayed on web pages. This information could be exploited by an attacker for other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

6.9CVSS5.3AI score0.00261EPSS
Exploits0References1
CVE
CVE
added 2026/02/09 3:14 a.m.12 views

CVE-2025-66604

CVE-2025-66604 affects Yokogawa FAST/TOOLS: FAST/TOOLS packages RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB across R9.01–R10.04. Root cause is disclosure of the library version on the web page, which could enable attacker-initiated follow-on attacks. Documented impact indicates information exposure wit...

5.3CVSS5.3AI score0.00118EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.6 views

Yokogawa FAST/TOOLS 安全漏洞

Yokogawa FAST/TOOLS is a real-time operation management and visualization software developed by Yokogawa Electric Corporation. There are security vulnerabilities in the Yokogawa FAST/TOOLS R9.01 version up to R10.04. These vulnerabilities stem from the possibility of the library version being...

5.3CVSS5.7AI score0.00118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.6 views

PT-2026-7047

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Physical paths could be displayed on web pages. This information could be exploited by an attacker for other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

6.9CVSS5.3AI score0.00261EPSS
Exploits0References2
Rows per page
Query Builder