Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2026/06/15 9:30 p.m.10 views

EUVD-2026-36771

An arbitrary file upload vulnerability in the attachment handling component of flatnotes v5.5.4 allows attackers to execute arbitrary code via uploading a crafted HTML or SVG file...

5.8AI score0.00441EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/15 12:0 a.m.27 views

CVE-2026-50873

An arbitrary file upload vulnerability in the attachment handling component of flatnotes v5.5.4 allows attackers to execute arbitrary code via uploading a crafted HTML or SVG file...

0.00441EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/10/25 12:0 a.m.3 views

Huly Platform 安全漏洞

Huly Platform is an all-in-one project management platform from Huly open source. A security vulnerability exists in Huly Platform version v0.6.295. An attacker can exploit the vulnerability to execute arbitrary code by uploading a specially crafted HTML file to the tracker comment page...

6.1CVSS7.4AI score0.00349EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/09/16 1:15 a.m.4 views

CVE-2023-39612

A cross-site scripting XSS vulnerability in FileBrowser before v2.23.0 allows an authenticated attacker to escalate privileges to Administrator via user interaction with a crafted HTML file or URL...

9CVSS5.6AI score0.00725EPSS
Exploits1References4
CNNVD
CNNVDadded 2023/07/19 12:0 a.m.5 views

tduck-platform 跨站脚本漏洞

TDuckCloud tduck-platform is an open source form survey system from China Zhongda Numerical Wei Information Technology Limited TDuckCloud company. A security vulnerability exists in version v4.0 of tduck-platform, which stems from the presence of an arbitrary file upload vulnerability that allows...

6.1CVSS6.7AI score0.00531EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:43 a.m.3 views

SUSE CVE-2017-11114

The putchars function in htmlr.c in Twibright Links 2.14 allows remote attackers to cause a denial of service buffer over-read via a crafted HTML file...

5.5CVSS6.6AI score0.00892EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2023/02/15 3:44 a.m.3 views

SUSE CVE-2021-26948

Null pointer dereference in the htmldoc v1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service via a crafted html file...

7.8CVSS7.6AI score0.00786EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2022/04/07 3:15 p.m.4 views

CVE-2022-26627

Online Project Time Management System v1.0 was discovered to contain an arbitrary file write vulnerability which allows attackers to execute arbitrary code via a crafted HTML file...

8.8CVSS6.2AI score0.01426EPSS
Exploits1References2
BDU FSTEC
BDU FSTECadded 2020/02/27 12:0 a.m.3 views

Vulnerability of Firefox web browsers, Firefox ESR, and the Thunderbird email program, related to the lack of protection for operational data, allowing unauthorized access to confidential information

The vulnerability in web browsers Firefox, Firefox ESR, and the email processing program Thunderbird is related to the lack of protection for mission-critical data. Exploiting this vulnerability can allow a remote attacker to gain unauthorized access to confidential data through a specially creat...

6.5CVSS7.1AI score0.20271EPSS
Exploits0References20Affected Software10
Rows per page
Query Builder