Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в libreoffice

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint servers. An additional scheme ‘vnd.libreoffice.command’ specific to LibreOffice was added. In the affected versions of LibreOffice, links using this scheme could be used to invoke internal macr...

6.3CVSS6.8AI score0.01322EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-19209

Malware in sbrugna...

7.8CVSS8.6AI score0.00292EPSS
Exploits1References24
Veracode
Veracodeadded 2023/12/26 7:13 a.m.17 views

CSV Injection

Active Admin is vulnerable to CSV Injection. This vulnerability is due to missing sanitization while exporting a CSV file. An attacker can inject malicious data to a CSV file such as =, +, -', @, \t, \r which results in arbitrary macro execution if the csv file is opened in software such as excel...

9.8CVSS6.9AI score0.0016EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVASadded 2022/10/14 12:0 a.m.15 views

Debian: Security Advisory (DSA-5252-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS7.5AI score0.01322EPSS
Exploits0References4
Cvelist
Cvelistadded 2019/09/27 3:7 p.m.18 views

CVE-2019-9853 Insufficient URL decoding flaw in categorizing macro location

LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in how the urls to the macros within the document were processed and categorized, resulting in...

8.7AI score0.00292EPSS
Exploits1References17
CVE
CVEadded 2019/09/27 3:7 p.m.290 views

CVE-2019-9853

LibreOffice: CVE-2019-9853 — A URL decoding flaw in how macro URLs are processed and categorized lets an attacker craft a document that bypasses macro security settings, enabling arbitrary macro execution. Affected versions: LibreOffice 6.2 before 6.2.7 and 6.3 before 6.3.1. Remediation: update t...

7.8CVSS8.7AI score0.00292EPSS
Exploits1References17Affected Software1
Cvelist
Cvelistadded 2003/09/04 4:0 a.m.18 views

CVE-2003-0664

Microsoft Word 2002, 2000, 97, and 98J does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document...

7.1AI score0.07251EPSS
Exploits0References2
Cvelist
Cvelistadded 2002/03/09 5:0 a.m.24 views

CVE-2001-0628

Microsoft Word 2000 does not check AutoRecovery .asd files for macros, which allows a local attacker to execute arbitrary macros with the user ID of the Word user...

7AI score0.01968EPSS
Exploits1References3
Rows per page
Query Builder