Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2019-13569

Malware in sbrugna...

4.3CVSS4.5AI score0.00954EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.24 views

EUVD-2025-26663

Malicious code in bioql PyPI...

9.6CVSS6.5AI score0.00597EPSS
Exploits1References2
Patchstack
Patchstackadded 2025/08/02 1:50 p.m.22 views

WordPress Doctreat theme <= 1.6.7 - Content Injection vulnerability

Content Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Doctreat versions = 1.6.7...

6.5CVSS7.3AI score0.00247EPSS
Exploits0Affected Software1
Cvelist
Cvelistadded 2025/07/04 8:42 a.m.11 views

CVE-2025-27358 WordPress Frontend File Manager plugin <= 23.6 - Content Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Code Injection.This issue affects Frontend File Manager: from n/a through = 23.6...

4.6CVSS0.00177EPSS
Exploits0References1
OSV
OSVadded 2022/08/24 12:37 p.m.5 views

SUSE-SU-2022:2885-1 Security update for rubygem-rails-html-sanitizer

This update for rubygem-rails-html-sanitizer fixes the following issues: - CVE-2022-32209: Fixed a potential content injection under specific configurations bsc1201183...

6.1CVSS6.6AI score0.2914EPSS
Exploits1References3
OSV
OSVadded 2021/03/22 8:15 a.m.3 views

CVE-2021-28963

Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters...

5.3CVSS5.4AI score
Exploits0References5
OSV
OSVadded 2021/02/25 2:1 a.m.3 views

GHSA-WJMF-58VC-XQJR Content injection in marked

Versions 0.3.7 and earlier of marked When mangling is disabled via option mangle don't escape target href. This allow attacker to inject arbitrary html-event into resulting a tag...

7.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2020/10/27 12:0 a.m.38 views

openSUSE Security Update : mailman (openSUSE-2020-1707)

This update for mailman to version 2.1.34 fixes the following issues : - The fix for lp1859104 can result in ValueError being thrown on attempts to subscribe to a list. This is fixed and extended to apply REFUSESECONDPENDING to unsubscription as well. lp1878458 - DMARC mitigation no longer misses...

6.5CVSS6.2AI score0.02698EPSS
Exploits1References5
Debian
Debianadded 2020/05/07 11:47 a.m.50 views

[SECURITY] [DLA 2204-1] mailman security update

Package : mailman Version : 1:2.1.18-2+deb8u6 CVE ID : CVE-2020-12108 It was discovered that there was an arbitrary content injection vulnerability in the Mailman mailing list manager. For Debian 8 "Jessie", this issue has been fixed in mailman version 1:2.1.18-2+deb8u6. We recommend that you...

6.5CVSS6.8AI score0.02698EPSS
Exploits1
seebug.org
seebug.orgadded 2017/02/02 12:0 a.m.109 views

WordPress REST API content injection vulnerability

1.漏洞信息: WordPress是一个以PHP和MySQL为平台的自由开源的博客软件和内容管理系统。在4.7.0版本后,REST API插件的功能被集成到WordPress中,由此也引发了一些安全性问题。近日,一个由REST API引起的影响WorePress4.7.0和4.7.1版本的漏洞被披露,该漏洞可以导致WordPress所有文章内容可以未经验证被查看,修改,删除,甚至创建新的文章,危害巨大。 2.漏洞影响版本: WordPress 4.7.0 WordPress 4.7.1 3.复现环境: Apache2.4 PHP 7.0 WordPress 4.7.1 4.复现过程:...

7AI score
Exploits0
Rows per page
Query Builder