Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

ATTACKERKB
ATTACKERKBadded 2026/04/27 9:0 p.m.2 views

CVE-2026-7158

A vulnerability has been found in dmitryglhf mcp-url-downloader up to 4b8cf2de55f6e8864a77d108e8a94a5b8e4394c6. Affected by this issue is the function validateurlsafe of the file src/mcpurldownloader/server.py. Such manipulation of the argument url leads to server-side request forgery. The attack...

7.5CVSS7AI score0.00054EPSS
Exploits0References4
Veracode
Veracodeadded 2024/07/31 5:25 a.m.7 views

Cross-Site Scripting (XSS)

typo3/cms is vulnerable to Cross-Site Scripting XSS. The vulnerability is caused due to a lack of sanitization of content from editors. This allows attackers with valid editor accounts to inject malicious scripts into content scanned by the link validator component...

6.3AI score
Exploits0References2Affected Software1
OSV
OSVadded 2024/06/03 5:1 p.m.8 views

GHSA-CG4M-QJJP-7497 TYPO3 Cross-Site Scripting in link validator component

Failing to sanitize content from editors, the link validator component is susceptible to Cross-Site Scripting. A valid editor account with access to content which is scanned by the link validator component is required to exploit this vulnerability...

7AI score
Exploits0References3
Github Security Blog
Github Security Blogadded 2024/06/03 5:1 p.m.10 views

TYPO3 Cross-Site Scripting in link validator component

Failing to sanitize content from editors, the link validator component is susceptible to Cross-Site Scripting. A valid editor account with access to content which is scanned by the link validator component is required to exploit this vulnerability...

7AI score
Exploits0References4Affected Software1
0day.today
0day.todayadded 2019/09/02 12:0 a.m.50 views

Alkacon OpenCMS 10.5.x - Cross-Site Scripting Vulnerability (2)

Exploit for multiple platform in category web applications Exploit Title: Alkacon OpenCMS 10.5.x - Multiple XSS in Alkacon OpenCms Site Management Exploit Author: Aetsu Vendor Homepage: http://www.opencms.org Software Link: https://github.com/alkacon/opencms-core Version: 10.5.x Tested on: 10.5.5...

4.3CVSS6.3AI score0.03599EPSS
Exploits5
exploitpack
exploitpackadded 2019/09/02 12:0 a.m.31 views

Alkacon OpenCMS 10.5.x - Cross-Site Scripting (2)

Alkacon OpenCMS 10.5.x - Cross-Site Scripting 2 Exploit Title: Alkacon OpenCMS 10.5.x - Multiple XSS in Alkacon OpenCms Site Management Google Dork: N/A Date: 18/07/2019 Exploit Author: Aetsu Vendor Homepage: http://www.opencms.org Software Link: https://github.com/alkacon/opencms-core Version:...

4.3CVSS6.1AI score0.03599EPSS
Exploits5
Friends Of PHP
Friends Of PHPadded 2016/02/16 12:32 p.m.11 views

Cross-Site Scripting in link validator component

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002/...

7.2AI score
Exploits0Affected Software1
Rows per page
Query Builder