Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

SUSE CVE
SUSE CVEadded 2026/01/06 12:25 a.m.5 views

SUSE CVE-2025-65754

Cross Site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

6.1CVSS7.1AI score0.00011EPSS
Exploits2References2
RedhatCVE
RedhatCVEadded 2025/12/11 12:3 a.m.6 views

CVE-2025-65754

Cross Site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

6.1CVSS7AI score0.00011EPSS
Exploits2References1
OSV
OSVadded 2025/12/10 6:30 p.m.2 views

GHSA-8JQM-8QM3-QGQM Algernon Cross-Site Scripting vulnerability

Cross-site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

5.1CVSS7AI score0.00011EPSS
Exploits2References5
EUVD
EUVDadded 2025/12/10 6:30 p.m.1 views

EUVD-2025-202586

Algernon Cross-Site Scripting vulnerability...

5.8AI score0.00011EPSS
Exploits2References5
OSV
OSVadded 2025/12/10 6:16 p.m.2 views

CVE-2025-65754

Cross Site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

6.1CVSS7AI score0.00011EPSS
Exploits2References3
Positive Technologies
Positive Technologiesadded 2025/12/10 12:0 a.m.2 views

PT-2025-50364

Name of the Vulnerable Software and Affected Versions Algernon version 1.17.4 Description A Cross Site Scripting issue exists in Algernon version 1.17.4. This allows attackers to execute arbitrary code by injecting a crafted payload into a filename. The issue involves the injection of malicious...

6.9AI score0.00011EPSS
Exploits2References5
Cvelist
Cvelistadded 2025/12/10 12:0 a.m.28 views

CVE-2025-65754

Cross Site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

0.00011EPSS
Exploits2References3
Vulnrichment
Vulnrichmentadded 2025/12/10 12:0 a.m.1 views

CVE-2025-65754

Cross Site Scripting vulnerability in Algernon v1.17.4 allows attackers to execute arbitrary code via injecting a crafted payload into a filename...

6.7AI score0.00011EPSS
Exploits2References3
RedhatCVE
RedhatCVEadded 2025/05/23 5:38 a.m.3 views

CVE-2023-26146

All versions of the package ithewei/libhv are vulnerable to Cross-site Scripting XSS such that when a file with a name containing a malicious payload is served by the application, the filename is displayed without proper sanitization when it is rendered...

6.1CVSS6.3AI score0.00197EPSS
Exploits1References1
Huntr
Huntradded 2022/04/27 8:27 a.m.26 views

Multiple Store XSS via upload svg file and the file name of attachment

Description Hi There, facturascripts is vulnerable to store XSS by upload svg file, and the filename Step to produce with svg file Login as admin or any account has role Admin-Library, access Admin - library - New and upload file svg with content: alertdocument.cookie; save this. XSS will be...

3.5CVSS5.7AI score0.00267EPSS
Exploits1
Rows per page
Query Builder