Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 6 days ago9 views

CVE-2026-48907

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS0.00111EPSS
Exploits2References1
EUVD
EUVDadded 6 days ago10 views

EUVD-2026-34789

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS5.6AI score0.00111EPSS
Exploits2References1
Positive Technologies
Positive Technologiesadded 6 days ago17 views

PT-2026-46908

Name of the Vulnerable Software and Affected Versions JCE Editor for Joomla versions prior to 2.9.99.5 Description A flaw in the JCE editor extension for Joomla allows unauthenticated users to create new editor profiles. This capability can be leveraged to upload and execute PHP code on the serve...

10CVSS6.6AI score0.00111EPSS
Exploits2References7
NVD
NVDadded 2026/02/09 11:16 p.m.4 views

CVE-2026-25931

vscode-spell-checker is a basic spell checker that works well with code and documents. Prior to v4.5.4, DocumentSettings.determineIsTrusted treats the configuration value cSpell.trustedWorkspace as the authoritative trust flag. The value defaults to true package.json and is read from workspace...

7.8CVSS0.00021EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/19 5:55 a.m.4 views

Malicious code in cline-ai-main.cline-ai-agent (VSCode)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 04aeefbf39e1e9157280b91899a141e4f4c6619d434c594e4a2d3bf43883dbe6 This extension is malicious. When installed it runs an info stealer that exfiltrates user data including credentials and cryptocurrency...

7AI score
Exploits0References1
CNNVD
CNNVDadded 2025/02/07 12:0 a.m.2 views

GitLab gitlab-vscode-extension 跨站脚本漏洞

GitLab gitlab-vscode-extension is a VSCode code editor extension for Gitlab from GitLab USA. A cross-site scripting vulnerability exists in GitLab gitlab-vscode-extension. An attacker can exploit this vulnerability to perform a cross-site scripting attack...

8.7CVSS6.1AI score0.00431EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/08/30 12:0 a.m.25 views

Security Update for Microsoft Visual Studio Code Bosh Editor Extension (CVE-2022-31691)

The Microsoft Visual Studio Code Bosh Editor Extension is version 1.39.0 or below. It is, therefore, affected by a remote code execution vulnerability. The extension uses the Snakeyaml library for YAML editing support. This library allows for some special syntax in the YAML that under certain...

9.8CVSS8.9AI score0.12808EPSS
Exploits0References2
NVD
NVDadded 2010/01/15 7:30 p.m.15 views

CVE-2010-0338

SQL injection vulnerability in the TTProducts editor ttpedit extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.4AI score0.00458EPSS
Exploits0References1
Rows per page
Query Builder