Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2025/04/16 12:0 a.m.4 views

Rancher 跨站脚本漏洞

Rancher is an open source container management platform from Rancher Open Source in the United States, built for organizations deploying containers in production environments. A cross-site scripting vulnerability exists in Rancher versions 2.9.0 through prior to 2.9.4, which stems from improperly...

8.9CVSS6.3AI score0.00011EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/06/07 12:0 a.m.4 views

PT-2023-11851 · WordPress · Kingcomposer

Name of the Vulnerable Software and Affected Versions: The Page Builder: KingComposer plugin for WordPress versions prior to 2.9.4 Description: The issue is related to Stored Cross-Site Scripting via shortcode due to insufficient input sanitization and output escaping. This allows authenticated...

5.5CVSS4.8AI score0.0058EPSS
Exploits1References6
OSV
OSVadded 2021/05/10 6:47 p.m.5 views

GHSA-H68Q-55JF-X68W Prototype pollution in chart.js

This affects the package chart.js before 2.9.4. The options parameter is not properly sanitized when it is processed. When the options are processed, the existing options or the defaults options are deeply merged with provided options. However, during this operation, the keys of the object being...

7.5CVSS6.8AI score0.00211EPSS
Exploits1References6
RedHat Linux
RedHat Linuxadded 2016/12/15 10:11 p.m.3 views

libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral

Multiple use-after-free vulnerabilities in the 1 htmlPArsePubidLiteral and 2 htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a...

5.5CVSS7.3AI score0.00521EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2016/07/18 2:19 p.m.26 views

CVE-2016-1836

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document...

5.5CVSS5.6AI score0.01305EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2016/06/23 10:32 a.m.5 views

libxml2: Heap-based buffer underreads due to xmlParseName

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service heap-based buffer underread and application crash via a crafted file, involving xmlParseName...

7.5CVSS7.3AI score0.02658EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2016/06/23 10:32 a.m.5 views

libxml2: Format string vulnerability

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors...

10CVSS7.2AI score0.01546EPSS
Exploits0References4
Rows per page
Query Builder