Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/10/27 12:0 a.m.11 views

CVE-2025-54967

CVE-2025-54967 affects BAE Systems SOCET GXP up to version 4.6.0.3. The issue arises from allowing external entities in certain XML-based files, enabling an attacker who entices a user to open a malicious file to trigger outbound requests and potentially disclose sensitive information. The root c...

6.5CVSS6.2AI score0.00331EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2025/09/09 12:0 a.m.8 views

CVE-2025-44593

Halo prior to 2.20.13 allows bypassing file type detection and uploading malicious files such as .exe and .html files. Specifically, .html files can trigger stored XSS vulnerabilities. This vulnerability is fixed in 2.20.13...

0.0024EPSS
Exploits0References1
OSV
OSVadded 2024/06/25 5:7 p.m.5 views

GHSA-94CC-XJXR-PWVF DSpace Cross Site Scripting (XSS) via a deposited HTML/XML document

Impact In DSpace 7.0 through 7.6.1, when an HTML, XML or JavaScript Bitstream is downloaded, the user's browser may execute any embedded JavaScript. If that embedded JavaScript is malicious, there is a risk of an XSS attack. This attack may only be initialized by a user who already has Submitter...

2.6CVSS5.7AI score0.00393EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2024/05/14 12:0 a.m.4 views

PT-2024-3649 · Siemens · Jt2Go +1

Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to V2312.0001 Teamcenter Visualization V14.1 versions prior to V14.1.0.13 Teamcenter Visualization V14.2 versions prior to V14.2.0.10 Teamcenter Visualization V14.3 versions prior to V14.3.0.7 Teamcenter Visualization V23...

7.8CVSS8.5AI score0.00239EPSS
Exploits0References4
CNNVD
CNNVDadded 2021/03/09 12:0 a.m.3 views

IBM WebSphere Application Server路径遍历漏洞

IBM WebSphere Application Server WAS is by IBM in accordance with open standards, such as Java EE, XML and Web Services, development and distribution of an application server. A directory traversal vulnerability exists in IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0. An attacker can...

6.5CVSS5.9AI score0.02252EPSS
Exploits0References11
RedHat Linux
RedHat Linuxadded 2021/02/17 7:6 p.m.3 views

jenkins: Arbitrary file existence check in file fingerprints

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4.3CVSS5.8AI score0.01215EPSS
Exploits0References4
CNVD
CNVDadded 2018/07/27 12:0 a.m.3 views

F5 BIG-IP Denial of Service Vulnerability (CNVD-2018-21232)

F5 BIG-IP is an all-in-one network device from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A security vulnerability exists in the F5 BIG-IP. A remote attacker can exploit this vulnerability to cause a denial of service wh...

5.3CVSS5.4AI score0.01194EPSS
Exploits0References1
CNVD
CNVDadded 2017/12/04 12:0 a.m.2 views

XML Parser Denial of Service Vulnerability in Various Huawei Products

Huawei S12700 and so on are enterprise switch products of Huawei China Company. XML parser is one of the XML parsers. A denial of service vulnerability exists in the XML parser in several Huawei products, which stems from the program's lack of validation of XML files. An attacker could cause a...

4.7CVSS6.8AI score0.00494EPSS
Exploits0References1
Rows per page
Query Builder