Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Cvelist
Cvelistadded 2 days ago21 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

0.00035EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/04/26 1:19 p.m.32 views

CVE-2018-25282 Nmap 7.70 Denial of Service via XML Entity Expansion

Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the application by processing malicious XML files with exponential entity expansion. Attackers can create a crafted XML file with nested entity definitions and open it through ZenMap's scan import...

6.9CVSS0.00017EPSS
Exploits0References3
NVD
NVDadded 2026/01/27 9:15 a.m.4 views

CVE-2026-24815

Unrestricted Upload of File with Dangerous Type, Deserialization of Untrusted Data vulnerability in datavane tis tis-plugin/src/main/java/com/qlangtech/tis/extension/impl modules. This vulnerability is associated with program files XmlFile.Java. This issue affects tis: before v4.3.0...

10CVSS0.00096EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/16 5:3 p.m.1 views

CVE-2023-53901 WBCE CMS 1.6.1 Cross-Site Scripting and Open Redirect Vulnerability

WBCE CMS 1.6.1 contains a cross-site scripting vulnerability that allows attackers to inject malicious HTML and CSS to capture user keystrokes. Attackers can upload a crafted HTML file with CSS-based keylogging techniques to intercept password characters through background image requests...

7.1CVSS5.9AI score0.00033EPSS
Exploits1References3
CVE
CVEadded 2025/08/22 12:0 a.m.15 views

CVE-2022-45133

Affected software: Mahara. Vulnerable versions: 21.10 < 21.10.6, 22.04 < 22.04.4, 22.10

6.5CVSS7.2AI score0.00293EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2023/06/05 4:15 p.m.1 views

CVE-2023-33693

A buffer overflow in EasyPlayerPro-Win v3.2.19.0106 to v3.6.19.0823 allows attackers to cause a Denial of Service DoS via a crafted XML file...

7.8CVSS6.3AI score0.00138EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2022/05/24 5:6 p.m.49 views

Remote code execution in Microsoft.WindowsDesktop.App.Ref

A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Execution Vulnerability'...

9.3CVSS4.1AI score0.32267EPSS
Exploits0References5Affected Software3
RedHat Linux
RedHat Linuxadded 2014/10/16 5:49 p.m.2 views

libxml2: denial of service via recursive entity expansion

A denial of service flaw was found in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption denial of service bas...

5CVSS6.7AI score0.03894EPSS
Exploits1References4
Rows per page
Query Builder