Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

67 matches found

UbuntuCve
UbuntuCveadded 2018/07/10 8:29 p.m.14 views

CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS7.1AI score0.00387EPSS
Exploits1References2
Cvelist
Cvelistadded 2018/07/10 8:0 p.m.10 views

CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.4AI score0.00387EPSS
Exploits1References2
OSV
OSVadded 2017/12/09 6:29 a.m.1 views

CVE-2017-16414

An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the...

8.8CVSS5.8AI score
Exploits0References3
CNVD
CNVDadded 2017/10/10 12:0 a.m.1 views

ljharb's qs module input validation vulnerability

A web framework is a framework used to support the development of dynamic websites, web applications, and web services. qs module is a string query parsing module used by developers when building web frameworks. A denial of service vulnerability exists in ljharb's qs module. An attacker could...

7.5CVSS7.3AI score0.00808EPSS
Exploits0References1
CNVD
CNVDadded 2015/12/30 12:0 a.m.1 views

Web Analytics Service Cross-Site Scripting Vulnerability

Web Analytics Service is a web analytics server. A cross-site scripting vulnerability exists in the JavaScript module of Web Analytics Service. This allows remote attackers to inject arbitrary web script or HTML code via unspecified vectors...

6.1CVSS6.2AI score0.00309EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2015/12/08 5:29 a.m.1 views

Web Analytics Service vulnerable to cross-site scripting

Overview The JavaScript module for using Web Analytics Service which was provided by NTT DATA Smart Sourcing Corporation contains a cross-site scripting vulnerability CWE-79 due to a flaw in escaping process. According to the developer, this script was distributed from 26 November, 2003 to 9 July...

6.1CVSS6AI score0.00309EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2015/12/07 12:0 a.m.18 views

JVN#70083512: Web Analytics Service vulnerable to cross-site scripting

The JavaScript module for using Web Analytics Service which was provided by NTT DATA Smart Sourcing Corporation contains a cross-site scripting vulnerability CWE-79 due to a flaw in escaping process. According to the developer, this script was distributed from 26 November, 2003 to 9 July, 2013...

6.1CVSS6AI score0.00309EPSS
Exploits0
Rows per page
Query Builder