Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/03/27 9:27 p.m.5 views

CVE-2026-33955 Notesnook vulnerable to RCE via stored XSS in Note History diff viewer

Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop, a cross-site scripting vulnerability stored in the note history comparison viewer can escalate to remote code execution in a desktop application. The issue is triggered when an attacker-controlled note header is displayed usi...

8.6CVSS6.4AI score0.00345EPSS
Exploits1References1
OSV
OSV
added 2026/03/27 9:27 p.m.4 views

CVE-2026-33955 Notesnook vulnerable to RCE via stored XSS in Note History diff viewer

Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop, a cross-site scripting vulnerability stored in the note history comparison viewer can escalate to remote code execution in a desktop application. The issue is triggered when an attacker-controlled note header is displayed usi...

8.6CVSS6.4AI score0.00345EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/27 9:27 p.m.5 views

EUVD-2026-16872

Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop, a cross-site scripting vulnerability stored in the note history comparison viewer can escalate to remote code execution in a desktop application. The issue is triggered when an attacker-controlled note header is displayed usi...

8.6CVSS6.4AI score0.00345EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/11/07 12:0 a.m.5 views

PT-2023-29933 · Squidex · Squidex

Name of the Vulnerable Software and Affected Versions: Squidex versions affected versions not specified Description: The issue concerns an arbitrary file write vulnerability in the backup restore feature of Squidex, allowing an authenticated attacker with the squidex.admin.restore permission to...

9.1CVSS7.4AI score0.01538EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/03/11 6:15 p.m.3 views

CVE-2022-0921

Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12...

7.2CVSS6.9AI score0.0207EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/03/11 5:25 p.m.8 views

CVE-2022-0921 Abusing Backup/Restore feature to achieve Remote Code Execution in microweber/microweber

Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12...

7.2CVSS7.1AI score0.0207EPSS
Exploits1References2
ICS
ICS
added 2019/01/31 12:0 a.m.81 views

IDenticard PremiSys (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit/vulnerability details have been publicly disclosed Vendor: IDenticard Equipment: PremiSys Vulnerabilities: Use of Hard-coded Credentials, Use of Hard-coded Password, Inadequate Encryption Strength 2...

9CVSS8.4AI score0.0289EPSS
Exploits0References6
Rows per page
Query Builder