CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Cvelist•added 2025/08/19 5:4 p.m.•8 views

CVE-2025-54881 Mermaid improperly sanitizes of sequence diagram labels leading to XSS

Mermaid is a JavaScript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. In the default configuration of mermaid 10.9.0-rc.1 to 11.9.0, user supplied input for sequence diagram labels is passed to innerHTML duri...

5.3CVSS0.0071EPSS

Exploits0References3

CNVD•added 2024/03/26 12:0 a.m.•35 views

Apache Commons Configuration Out-of-Bounds Write Vulnerability (CNVD-2024-16109)

Apache Commons Configuration is the United States Apache Apache Foundation , a common configuration interface , it is mainly used to enable Java applications to read configuration data from a variety of sources . An out-of-bounds write vulnerability exists in Apache Commons Configuration versions...

5.4CVSS7.6AI score0.01727EPSS

Exploits0References1

Cvelist•added 2023/09/11 7:36 p.m.•22 views

CVE-2023-36497 Dover Fueling Solutions MAGLINK LX Web Console Authentication Bypass by Primary Weakness

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 could allow a guest user to elevate to admin privileges...

8.8CVSS8.8AI score0.00515EPSS

Exploits0References1