Lucene search
K

44376 matches found

Nuclei
Nuclei
added 19 hours ago36 views

Purchase Order Management v1.0 - Cross Site Scripting (Reflected)

Purchase Order Management v1.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the password parameter at /purchaseorder/classes/login.php. id: CVE-2023-29623 info: name: Purchase Order Management v1.0 - Cross Site Scripting Reflected author: theamanrawat severity:...

6.1CVSS6.3AI score0.0125EPSS
Exploits1References4
Nuclei
Nuclei
added yesterday145 views

Apache Tomcat 4.x-7.x - Cross-Site Scripting

Apache Tomcat 4.x through 7.x contains a cross-site scripting vulnerability which an attacker can use to execute arbitrary script in the browser of an unsuspecting user in the context of the affected site. id: CVE-2007-2449 info: name: Apache Tomcat 4.x-7.x - Cross-Site Scripting author:...

4.3CVSS6AI score0.77376EPSS
Exploits1References2
Nuclei
Nuclei
added yesterday48 views

Grafana 8.0.0 <= v.8.2.2 - Angularjs Rendering Cross-Site Scripting

Grafana is an open-source platform for monitoring and observability. In affected versions if an attacker is able to convince a victim to visit a URL referencing a vulnerable page, arbitrary JavaScript content may be executed within the context of the victim's browser. The user visiting the...

6.9CVSS6.9AI score0.84607EPSS
Exploits0References5
Nuclei
Nuclei
added yesterday88 views

Calibre <= 7.15.0 - Reflected Cross-Site Scripting (XSS)

It is possible to inject arbitrary JavaScript code into the /browse endpoint of the Calibre content server, allowing an attacker to craft a URL that when clicked by a victim, will execute the attacker’s JavaScript code in the context of the victim’s browser. If the Calibre server is running with...

6.1CVSS6.2AI score0.2406EPSS
Exploits1References1
Cvelist
Cvelist
added 2 days ago34 views

CVE-2026-45489 Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

6.5CVSS0.00525EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-41597

Insufficient ui warning of dangerous operations in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS6AI score0.00407EPSS
Exploits0References1
CVE
CVE
added 2 days ago9 views

CVE-2026-58295

CVE-2026-58295 affects Microsoft Edge (Chromium-based). A resource access type confusion allows a network-based attacker to bypass a security feature without user interaction (CVSS v3.1: 8.3). No exploitation details are provided beyond MSRC reference; remediation is to apply the appropriate Edge...

8.3CVSS5.9AI score0.0038EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-58293

External control of file name or path in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.1CVSS6.1AI score0.0053EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-58293 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.1CVSS0.0053EPSS
Exploits0References1
CVE
CVE
added 2 days ago8 views

CVE-2026-58293

CVE-2026-58293 affects Microsoft Edge (Chromium-based). It describes external control of a file name or path that allows an unauthenticated attacker to execute code over the network. The CVSSv3.1 base score is 8.1 (High) with attack vector Network, attack complexity High, privileges required None...

8.1CVSS6.1AI score0.0053EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-58292 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

7.5CVSS0.00285EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago8 views

EUVD-2026-41586

Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

9CVSS6.1AI score0.0053EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-58288 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.3CVSS0.00448EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2 days ago6 views

CVE-2026-58285

Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.3CVSS6.1AI score0.00448EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-58278

Server-side request forgery ssrf in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS6AI score0.00323EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-58276

Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

7.5CVSS6.1AI score0.00438EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-41579

Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.9AI score0.00762EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago33 views

CVE-2026-57981 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS0.00568EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago27 views

CVE-2026-57977 Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

7.1CVSS0.00406EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago3 views

EUVD-2026-41576

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

7.1CVSS6AI score0.00406EPSS
Exploits0References1
Rows per page
Query Builder