Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-25337

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00047EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-15479

Malicious code in bioql PyPI...

8.5CVSS8.7AI score0.00062EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/08/22 8:30 a.m.1 views

CVE-2025-48168

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Apollo - Sticky Full Width HTML5 Audio Player lbg-audio5-html5-shoutcast-sticky allows Reflected XSS.This issue affects Apollo - Sticky Full Width HTML5 Audio Player: from n/a through ...

7.1CVSS5.9AI score0.00047EPSS
Exploits0References1
NVD
NVDadded 2025/08/20 8:15 a.m.0 views

CVE-2025-48168

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Apollo - Sticky Full Width HTML5 Audio Player lbg-audio5-html5-shoutcast-sticky allows Reflected XSS.This issue affects Apollo - Sticky Full Width HTML5 Audio Player: from n/a through ...

7.1CVSS0.00047EPSS
Exploits0References1
CVE
CVEadded 2025/08/20 8:3 a.m.14 views

CVE-2025-48168

CVE-2025-48168 applies to the WordPress plugin Apollo - Sticky Full Width HTML5 Audio Player. It describes a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation. Affected software/version: Apollo - Sticky Full Width HTML5 Audio ...

7.1CVSS5.9AI score0.00047EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/18 4:3 p.m.6 views

CVE-2025-32245

Cross-Site Request Forgery CSRF vulnerability in Chaser324 Featured Posts Scroll featured-posts-scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through = 1.25...

8.5CVSS7.2AI score0.00062EPSS
Exploits0References1
NVD
NVDadded 2025/05/16 4:15 p.m.3 views

CVE-2025-32245

Cross-Site Request Forgery CSRF vulnerability in Chaser324 Featured Posts Scroll featured-posts-scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through = 1.25...

6.5CVSS0.00062EPSS
Exploits0References1
CVE
CVEadded 2025/05/16 3:45 p.m.14 views

CVE-2025-32245

CVE-2025-32245 covers a SQL Injection in the WordPress Apollo plugin (

8.5CVSS7.2AI score0.00062EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/05/16 3:45 p.m.6 views

CVE-2025-32245 WordPress Apollo <= 3.6.3 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup Apollo allows SQL Injection. This issue affects Apollo: from n/a through 3.6.3...

8.5CVSS7.6AI score0.00062EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2025/05/16 3:45 p.m.1 views

CVE-2025-32245

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup Apollo allows SQL Injection. This issue affects Apollo: from n/a through 3.6.3...

8.5CVSS8AI score0.00062EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/05/16 12:0 a.m.1 views

PT-2025-21685 · Lambertgroup · Lambertgroup Apollo

Name of the Vulnerable Software and Affected Versions: LambertGroup Apollo versions through 3.6.3 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. To mitigate the...

8.5CVSS9.1AI score0.00062EPSS
Exploits0References4
Rows per page
Query Builder