Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/03/25 9:30 p.m.2 views

EUVD-2026-15949

Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality of the web interface that allows authenticated administrators to execute arbitrary scripts by supplying crafted names containing script or HTML markup. Attacke...

4.8CVSS6.1AI score0.00076EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/03/25 8:36 p.m.3 views

CVE-2026-1001

A flaw was found in Domoticz. This stored cross-site scripting XSS vulnerability allows authenticated administrators to execute arbitrary scripts. By supplying crafted names containing script or HTML markup in the 'Add Hardware' and 'rename device' functionalities, attackers can inject malicious...

4.8CVSS6.1AI score0.00076EPSS
Exploits0References5
NVD
NVDadded 2026/03/25 7:16 p.m.2 views

CVE-2026-1001

Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality of the web interface that allows authenticated administrators to execute arbitrary scripts by supplying crafted names containing script or HTML markup. Attacke...

4.8CVSS0.00076EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/25 6:12 p.m.19 views

CVE-2026-1001 Domoticz < 2026.1 Stored XSS via Hardware Configuration Endpoint

Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality of the web interface that allows authenticated administrators to execute arbitrary scripts by supplying crafted names containing script or HTML markup. Attacke...

4.8CVSS0.00076EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/03/25 6:12 p.m.5 views

CVE-2026-1001

Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality of the web interface that allows authenticated administrators to execute arbitrary scripts by supplying crafted names containing script or HTML markup. Attacke...

4.8CVSS6.3AI score0.00076EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/03/25 12:0 a.m.4 views

PT-2026-28077

Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality of the web interface that allows authenticated administrators to execute arbitrary scripts by supplying crafted names containing script or HTML markup. Attacke...

4.8CVSS6.1AI score0.00076EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2025/12/24 11:15 a.m.2 views

CVE-2022-50711

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix possible memory leak in mtkprobe If mtkwedaddhw has been called, mtkwedexit needs be called in error path or removing module to free the memory allocated in mtkwedaddhw...

5.7AI score0.0003EPSS
Exploits0References3
Rows per page
Query Builder