Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CVE
CVEadded 2026/03/20 10:30 p.m.4 views

CVE-2026-33194

SiYuan CVE-2026-33194 affects versions prior to 3.6.2. The vulnerability stems from an incomplete denylist in the IsSensitivePath() function (kernel/util/path.go) which was expanded but still does not block several Linux directories such as /opt, /usr, /home, /mnt, and /media. The affected endpoi...

6.8CVSS5.8AI score0.00028EPSS
Exploits1References1Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2025-30728

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00039EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/09/24 6:30 p.m.0 views

CVE-2025-57901

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DAEXT Import Markdown allows Stored XSS. This issue affects Import Markdown: from n/a through 1.14...

6.5CVSS5.9AI score0.00039EPSS
Exploits0References1
NVD
NVDadded 2025/09/22 7:15 p.m.2 views

CVE-2025-57901

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

0.00039EPSS
Exploits0
CVE
CVEadded 2025/09/22 6:25 p.m.7 views

CVE-2025-57901

CVE-2025-57901 is listed in connected sources as relating to Import Markdown – Versatile Markdown Importer for WordPress. The connected entry indicates a vulnerability described as an authenticated (Contributor+) Stored Cross-Site Scripting (XSS) via the Markdown import process. In practical term...

5.6AI score0.00039EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/09/22 6:25 p.m.1 views

CVE-2025-57901

...

6.3AI score0.00039EPSS
Exploits0
Cvelist
Cvelistadded 2025/09/22 6:25 p.m.3 views

CVE-2025-57901

...

0.00039EPSS
Exploits0
CNNVD
CNNVDadded 2025/09/22 12:0 a.m.1 views

编号撤回

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

5.8AI score0.00039EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/22 12:0 a.m.1 views

PT-2025-39011

Name of the Vulnerable Software and Affected Versions DAEXT Import Markdown versions through 1.14 Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Stored Cross-Site Scripting XSS condition. This allows an attacker to...

6.5CVSS5.4AI score0.00039EPSS
Exploits0References3
Patchstack
Patchstackadded 2025/09/22 12:0 a.m.3 views

WordPress Import Markdown Plugin <= 1.14 is vulnerable to Cross Site Scripting (XSS)

Software Import Markdown Type Plugin Vulnerable versions = 1.14 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-57901 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3d88e282a665 Credits minseok Kim Required privilege Contributo...

6.5CVSS5.9AI score0.00039EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder