Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 10:47 p.m.5 views

CVE-2022-29814

In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible...

7.7CVSS7.2AI score0.00002EPSS
Exploits0References1
CVE
CVEadded 2025/04/09 4:0 p.m.215 views

CVE-2025-32381

XGrammar (open-source library for structured generation) has a DoS in-memory cache vulnerability. Before version 0.1.18, an unbounded in-memory cache of compiled grammars can be filled by many unique inputs (e.g., numerous JSON schemas), exhausting host memory and causing denial of service. The i...

6.5CVSS6.3AI score0.00354EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2022/04/28 10:15 a.m.0 views

CVE-2022-29814

In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible...

7.7CVSS6.1AI score
Exploits0References1
Prion
Prionadded 2022/04/28 10:15 a.m.18 views

Hardcoded credentials

In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible...

4.4CVSS7.6AI score0.00002EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2022/04/28 9:55 a.m.75 views

CVE-2022-29814

CVE-2022-29814 affects JetBrains IntelliJ IDEA before 2022.1, enabling local code execution through HTML descriptions in custom JSON schemas. The vulnerability is described across multiple sources (NVD, Red Hat, CNVD, CVE records) with local exploit potential; no remediation or patch version is s...

7.7CVSS7.6AI score0.00002EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2022/04/28 9:55 a.m.13 views

CVE-2022-29814

In JetBrains IntelliJ IDEA before 2022.1 local code execution via HTML descriptions in custom JSON schemas was possible...

6.9CVSS7.9AI score0.00002EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/04/28 12:0 a.m.3 views

Jetbrains IntelliJ IDEA 代码注入漏洞

JetBrains IntelliJ IDEA is a suite of integrated development environments for the Java language from Jetbrains Czech Republic.JetBrains IntelliJ IDEA versions prior to 2022.1 contain a code injection vulnerability that could be exploited to execute native code via HTML descriptions in custom JSON...

7.7CVSS5.9AI score0.00002EPSS
Exploits0References2
OSV
OSVadded 2020/09/11 9:21 p.m.15 views

GHSA-VP93-GCX5-4W52 Cross-Site Scripting in swagger-ui

Versions of swagger-ui prior to 2.2.1 are vulnerable to Cross-Site Scripting XSS. The package fails to sanitize JSON schemas, allowing attackers to execute arbitrary JavaScript using tags in the method descriptions. Recommendation Upgrade to version 2.2.1 or later...

6.9AI score
Exploits0References3
Github Security Blog
Github Security Blogadded 2020/09/11 9:21 p.m.26 views

Cross-Site Scripting in swagger-ui

Versions of swagger-ui prior to 2.2.1 are vulnerable to Cross-Site Scripting XSS. The package fails to sanitize JSON schemas, allowing attackers to execute arbitrary JavaScript using tags in the method descriptions. Recommendation Upgrade to version 2.2.1 or later...

5.3AI score
Exploits0References3Affected Software1
Node.js
Node.jsadded 2019/06/18 9:43 p.m.14 views

Cross-Site Scripting

Overview Versions of swagger-ui prior to 2.2.1 are vulnerable to Cross-Site Scripting XSS. The package fails to sanitize JSON schemas, allowing attackers to execute arbitrary JavaScript using tags in the method descriptions. Recommendation Upgrade to version 2.2.1 or later. References - GitHub...

6.7AI score
Exploits0Affected Software1
Rows per page
Query Builder