Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2026/05/22 3:1 p.m.2 views

CVE-2026-25680 Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html

Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service...

5.9AI score0.00061EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/05/22 12:0 a.m.7 views

PT-2026-42779

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Parsing arbitrary HTML can consume excessive CPU time, which may lead to a denial of service a condition where a system becomes unavailable to its intended users...

9.1CVSS5.9AI score0.00061EPSS
Exploits0References43
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-27460

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00082EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2025/04/09 12:0 a.m.2 views

The vulnerability of Websoft HCM’s automation software for HR processes stems from insufficient validation of input data, allowing attackers to execute the displayed HTML code.

The vulnerability of Websoft HCM’s automation software for HR processes is related to insufficient verification of entered data. Exploiting this vulnerability allows a malicious actor to execute arbitrary HTML code by sending a specially crafted POST request...

7.5CVSS5.9AI score
Exploits0
CNNVD
CNNVDadded 2024/10/04 12:0 a.m.3 views

Esri Portal For ArcGIS 安全漏洞

Esri Portal For ArcGIS is a component from Environmental Systems Research Institute Esri that allows maps, scenes, applications, and other geographic information to be shared with others within an organization. Esri Portal For ArcGIS suffers from an HTML injection vulnerability that stems from th...

5.4CVSS6.9AI score0.00425EPSS
Exploits0References3
OSV
OSVadded 2022/11/28 10:15 p.m.2 views

CVE-2022-45214

A cross-site scripting XSS vulnerability in Sanitization Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter at /php-sms/classes/Login.php...

6.1CVSS5.9AI score0.00247EPSS
Exploits1References1
CNNVD
CNNVDadded 2022/02/04 12:0 a.m.4 views

Sensio Labs Twig 代码代码注入漏洞

Sensio Labs Twig is a PHP template engine from the French company Sensio Labs that supports custom tags and filters and the creation of DSLs. Sensio Labs Twig is vulnerable to injection, which can be exploited by attackers to run arbitrary PHP functions...

9.8CVSS5.8AI score0.21146EPSS
Exploits3References13
BDU FSTEC
BDU FSTECadded 2021/12/13 12:0 a.m.1 views

The vulnerability of the ArcGIS Server server, related to improper handling of code generation, allows a attacker to execute arbitrary HTML code.

The vulnerability of ArcGIS Server is related to incorrect code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary HTML code remotely...

5CVSS5.9AI score0.00333EPSS
Exploits0References2
CNVD
CNVDadded 2015/01/22 12:0 a.m.1 views

McAfee Data Loss Prevention Endpoint HTML Injection Vulnerability

McAfee Network Data Loss Prevention monitors network traffic and protects against data loss. An HTML injection vulnerability exists in McAfee Data Loss Prevention Endpoint, which could allow an attacker to execute arbitrary HTML and script code in the context of a user's browser at an affected si...

7.7AI score
Exploits0References1
Rows per page
Query Builder