Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2026/02/09 8:15 p.m.3 views

CVE-2026-25230

FileRise is a self-hosted web file manager / WebDAV server. Prior to 3.3.0, an HTML Injection vulnerability allows an authenticated user to modify the DOM and add e.g. form elements that call certain endpoints or link elements that redirect the user on active interaction. This vulnerability is...

5.4CVSS0.00057EPSS
Exploits1References4
OSV
OSVadded 2026/02/09 6:32 p.m.3 views

CVE-2026-25230 FileRise affected by HTML Injection using color property in file tags

FileRise is a self-hosted web file manager / WebDAV server. Prior to 3.3.0, an HTML Injection vulnerability allows an authenticated user to modify the DOM and add e.g. form elements that call certain endpoints or link elements that redirect the user on active interaction. This vulnerability is...

4.6CVSS5.7AI score0.00057EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2026/02/09 12:0 a.m.2 views

PT-2026-7133

FileRise is a self-hosted web file manager / WebDAV server. Prior to 3.3.0, an HTML Injection vulnerability allows an authenticated user to modify the DOM and add e.g. form elements that call certain endpoints or link elements that redirect the user on active interaction. This vulnerability is...

4.6CVSS5.6AI score0.00057EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-22083)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22083 advisory. - In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple...

7.8CVSS6.7AI score0.00019EPSS
Exploits0References2
OSV
OSVadded 2026/01/07 12:17 p.m.1 views

CVE-2025-9611

Microsoft Playwright MCP Server versions prior to 0.0.40 fails to validate the Origin header on incoming connections. This allows an attacker to perform a DNS rebinding attack via a victim’s web browser and send unauthorized requests to a locally running MCP server, resulting in unintended...

7.2CVSS6.6AI score
Exploits0References3
OSV
OSVadded 2025/03/12 3:32 p.m.0 views

GHSA-GFH6-3PQW-X2J4 SmallRye Fault Tolerance out-of-memory (OOM) issue

A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory OOM issue. This vulnerability is externally triggered when calling the metrics URI. Every call creates a new object within meterMap and may lead to a denial of service DoS issue...

7.5CVSS7AI score0.00344EPSS
Exploits0References11
CNNVD
CNNVDadded 2024/10/08 12:0 a.m.1 views

Pure Storage FlashArray Purity 安全漏洞

Pure Storage FlashArray Purity is a driver from the American company Pure Storage, Inc. It provides comprehensive data services. A security vulnerability exists in Pure Storage FlashArray Purity that originates from a user being able to make specific calls to endpoints that allow privilege...

9.8CVSS6.7AI score0.0034EPSS
Exploits0References2
Rows per page
Query Builder