Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/05/18 7:58 p.m.6 views

CVE-2026-42157

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a map node with a malicious label that contains arbitrary HTML. When the map tab is selected and a map node marker is...

5.1CVSS6AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/12 10:58 p.m.27 views

CVE-2026-42157 Flowsint: Stored XSS on map node marker in map page

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a map node with a malicious label that contains arbitrary HTML. When the map tab is selected and a map node marker is...

5.1CVSS0.00183EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/12 10:58 p.m.3 views

CVE-2026-42157

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a map node with a malicious label that contains arbitrary HTML. When the map tab is selected and a map node marker is...

5.1CVSS6AI score0.00183EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/12 10:58 p.m.3 views

CVE-2026-42157 Flowsint: Stored XSS on map node marker in map page

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a map node with a malicious label that contains arbitrary HTML. When the map tab is selected and a map node marker is...

5.1CVSS6AI score0.00183EPSS
Exploits0References1
CVE
CVEadded 2026/05/12 10:58 p.m.6 views

CVE-2026-42157

CVE-2026-42157 concerns Flowsint, an open-source OSINT graph exploration tool. Affected behavior: prior to version 1.2.3, an attacker could create a map node with a malicious HTML label; when the map tab is active and a node marker is selected, the HTML could render and trigger stored XSS. Impact...

5.1CVSS6AI score0.00183EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/12 12:0 a.m.5 views

PT-2026-40467

Name of the Vulnerable Software and Affected Versions Flowsint versions prior to 1.2.3 Description A remote attacker can create a map node with a malicious label containing arbitrary HTML. When the map tab and a map node marker are selected, the application renders the HTML, which can trigger...

5.1CVSS6AI score0.00183EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/05/12 12:0 a.m.4 views

Flowsint 跨站脚本漏洞

Flowsint is an open-source intelligence visualization tool developed by reconurge. Versions of Flowsint prior to 1.2.3 contained a cross-site scripting vulnerability. This vulnerability stemmed from map node tags containing arbitrary HTML, which could lead to storage-based cross-site scripting...

5.1CVSS5.8AI score0.00183EPSS
Exploits0References2
Rows per page
Query Builder