CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added last week•5 views

GHSA-J5XP-7M2F-49JV Docling Core: Insufficient validation of image reference URIs

Impact In versions = 2.5.0, = 2.74.1 Workarounds If upgrading is not immediately possible: - reject file: and data: image references from untrusted input - allow only approved local or remote image sources - apply input size and memory limits to processing workers References - Fix release: v2.74....

8.1CVSS5.8AI score

Exploits0References3

NVD•added 2026/06/02 10:16 a.m.•8 views

CVE-2026-5191

5.4CVSS0.00029EPSS

EUVD•added 2026/06/02 8:28 a.m.•8 views

EUVD-2026-33901

ATTACKERKB•added 2026/06/02 8:28 a.m.•5 views

CVE-2026-5191

CVE•added 2026/06/02 8:28 a.m.•13 views

Exploits0References3

CVE-2026-5191

The CVE-2026-5191 entry concerns the WordPress plugin “Tiled Gallery Carousel Without JetPack.” The vulnerability is a stored cross-site scripting flaw in the data-image-title parameter, present in all versions up to and including 3.1, caused by insufficient input sanitization and output escaping...

Vulnrichment•added 2026/06/02 8:28 a.m.•8 views

CVE-2026-5191 Tiled Gallery Carousel Without JetPack <= 3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'data-image-title'

Positive Technologies•added 2026/06/02 12:0 a.m.•8 views

PT-2026-45726

Name of the Vulnerable Software and Affected Versions Tiled Gallery Carousel Without JetPack versions prior to 3.2 Description The plugin is subject to stored cross-site scripting due to insufficient input sanitization and output escaping. Authenticated attackers with contributor level access or...

Github Security Blog•added 2026/05/14 8:18 p.m.•11 views

Exploits0References4

Open WebUI has XSS via SVG in /api/v1/channels/webhooks/{webhook_id}/profile/image

As part of our research on improving our AI pentest, we have uncovered the following issue in Open WebUI. We've manually verified and tided up the report, but you can also find the original agent finding at the bottom of this report. Summary The channel webhook create/update flow accepts arbitrar...

7.4CVSS6.2AI score0.0001EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2026/05/14 12:0 a.m.•10 views

PT-2026-41167

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.3 Description The channel webhook create and update flow accepts arbitrary profile image url values, including base64-encoded SVG payloads. The endpoint '/api/v1/channels/webhooks/webhook id/profile/image'...

7.4CVSS6AI score0.0001EPSS

Exploits1References7

RedhatCVE•added 2025/12/04 5:16 p.m.•6 views

CVE-2025-20382

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.10, 10.0.2503.8, and 9.3.2411.120, a low-privileged user that does not hold the "admin" or "power" Splunk roles could create a views dashboard with a custom background using th...

5.4CVSS6.6AI score0.00027EPSS

Cvelist•added 2025/12/03 5:0 p.m.•10 views

CVE-2025-20382 URL validation bypass through Views Dashboard in Splunk Enterprise

3.5CVSS0.00027EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2015-3753

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly perform taint...

5CVSS7.7AI score0.00621EPSS

Openbugbounty•added 2020/05/19 5:35 p.m.•15 views

coxsbazarreport.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1166157 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

0.6AI score

Exploits0

Openbugbounty•added 2020/05/13 4:25 p.m.•9 views

job.akademie-sport-gesundheit.de Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1160431 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

0.8AI score

Exploits0

OSV•added 2019/03/13 2:29 a.m.•2 views

CVE-2019-9736

DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References1

Prion•added 2019/03/13 2:29 a.m.•14 views

Design/Logic Flaw

Editor.md 1.5.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

4.3CVSS5.8AI score0.0024EPSS

Exploits1References1Affected Software1

OSV•added 2015/08/16 11:59 p.m.•3 views

UBUNTU-CVE-2015-3753

WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly perform taint checking for CANVAS elements, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive image data by leveraging a...

5CVSS7.2AI score0.00621EPSS

Exploits0References6

OSV•added 2010/03/31 6:0 p.m.•2 views

DEBIAN-CVE-2010-1195

Cross-site scripting XSS vulnerability in the htmlscrubber component in ikiwiki 2.x before 2.53.5 and 3.x before 3.20100312 allows remote attackers to inject arbitrary web script or HTML via a crafted data:image/svg+xml URI...

4.3CVSS5.6AI score0.0032EPSS