Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

72 matches found

RedhatCVE
RedhatCVEadded 3 days ago4 views

CVE-2026-20172

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email ECE could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent. This...

4.3CVSS5.8AI score0.00024EPSS
Exploits0References1
NVD
NVDadded 2026/05/06 5:16 p.m.7 views

CVE-2026-20172

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email ECE could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent. This...

4.3CVSS0.00024EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/06 4:15 p.m.3 views

CVE-2026-20172

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email ECE could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent. This...

4.3CVSS6AI score0.00024EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/05/06 4:15 p.m.40 views

CVE-2026-20172

CVE-2026-20172 affects Cisco Enterprise Chat and Email (ECE) Lite Agent file upload functionality. The issue arises from inadequate validation of uploaded file contents, enabling an authenticated user with at least Agent role to upload a file containing malicious scripts/HTML. The application cou...

4.3CVSS6AI score0.00024EPSS
Exploits0References1
Cisco
Ciscoadded 2026/05/06 4:0 p.m.8 views

Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability

A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email ECE could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent. This...

4.3CVSS5.9AI score0.00024EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.4 views

PT-2026-37653

Name of the Vulnerable Software and Affected Versions Cisco Enterprise Chat and Email affected versions not specified Description A flaw in the Lite Agent feature of Cisco Enterprise Chat and Email ECE allows an authenticated remote attacker with at least Agent role credentials to perform...

4.3CVSS6AI score0.00024EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/05/06 12:0 a.m.4 views

Cisco Enterprise Chat and Email 安全漏洞

Cisco Enterprise Chat and Email is a corporate chat and email solution provided by Cisco, Inc. This product primarily offers email, chat, and web callback features for other Cisco solutions. There is a security vulnerability in Cisco Enterprise Chat and Email, which stems from insufficient...

4.3CVSS5.8AI score0.00024EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-10427

Malware in sbrugna...

6.1CVSS6.3AI score0.0012EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-10434

Malware in sbrugna...

6.5CVSS6.6AI score0.01282EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-9561

Malicious code in bioql PyPI...

7.5CVSS9.2AI score0.00676EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-18199

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00913EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-26052

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00178EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-19737

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00122EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2025/07/09 12:0 a.m.0 views

The vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) allows attackers to carry out cross-site scripting attacks.

The vulnerability of the Cisco Enterprise Chat and Email ECE web interface is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS0.00122EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/07/04 4:24 p.m.4 views

CVE-2025-20310

A vulnerability in the web UI of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An...

6.1CVSS5.5AI score0.00122EPSS
Exploits0References1
NVD
NVDadded 2025/07/02 4:15 p.m.3 views

CVE-2025-20310

A vulnerability in the web UI of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An...

6.1CVSS0.00122EPSS
Exploits0References1
OSV
OSVadded 2025/07/02 4:15 p.m.1 views

CVE-2025-20310

A vulnerability in the web UI of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An...

6.1CVSS6AI score0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/02 4:5 p.m.3 views

CVE-2025-20310 Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability

A vulnerability in the web UI of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An...

6.1CVSS6AI score0.00122EPSS
Exploits0References1
CVE
CVEadded 2025/07/02 4:5 p.m.23 views

CVE-2025-20310

CVE-2025-20310 : Cisco Enterprise Chat and Email (ECE) web UI vulnerability where input in the interface is not properly validated, enabling a stored XSS attack. An unauthenticated, remote attacker could lure a user to click a crafted link, potentially executing arbitrary script in the user’s bro...

6.1CVSS6AI score0.00122EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/07/02 4:5 p.m.6 views

CVE-2025-20310 Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability

A vulnerability in the web UI of Cisco Enterprise Chat and Email ECE could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web UI does not properly validate user-supplied input. An...

6.1CVSS0.00122EPSS
Exploits0References1
Rows per page
Query Builder