Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/07 9:16 a.m.11 views

CVE-2025-1888

The Leica Web Viewer within the Aperio Eslide Manager Application is vulnerable to reflected cross-site scripting XSS. An authenticated user can access the slides within a project and injecting malicious JavaScript into the "memo" field. The memo field has a hover over action that will display a...

4.6CVSS6.3AI score0.00106EPSS
Exploits0References1
NVD
NVDadded 2025/12/12 5:16 a.m.2 views

CVE-2025-61950

In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some crafted request, a logged-in user may alter the memo field. The affected products and versions are GroupSession Free edition prior to ver5.3.0,...

5.3CVSS0.00029EPSS
Exploits0References2
EUVD
EUVDadded 2025/12/12 5:2 a.m.2 views

EUVD-2025-203022

In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some crafted request, a logged-in user may alter the memo field. The affected products and versions are GroupSession Free edition prior to ver5.3.0,...

5.3CVSS6.2AI score0.00029EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/12/12 5:2 a.m.23 views

CVE-2025-61950

In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some crafted request, a logged-in user may alter the memo field. The affected products and versions are GroupSession Free edition prior to ver5.3.0,...

5.3CVSS0.00029EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/12/12 5:2 a.m.2 views

CVE-2025-61950

In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some crafted request, a logged-in user may alter the memo field. The affected products and versions are GroupSession Free edition prior to ver5.3.0,...

5.3CVSS6.3AI score0.00029EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/12/12 12:0 a.m.3 views

PT-2025-50875

In GroupSession, a Circular notice can be created with its memo field non-editable, but the authorization check is improperly implemented. With some crafted request, a logged-in user may alter the memo field. The affected products and versions are GroupSession Free edition prior to ver5.3.0,...

5.3CVSS6.8AI score0.00029EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-6445

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00106EPSS
Exploits0References1
CVE
CVEadded 2025/03/14 4:11 p.m.46 views

CVE-2025-1888

CVE-2025-1888 affects the Leica Web Viewer component of the Aperio Eslide Manager Application. A reflected XSS vulnerability exists in the memo field used to annotate slides; an authenticated user can trigger execution by injecting malicious JavaScript via the memo hover/tooltip interface, which ...

4.6CVSS6.1AI score0.00106EPSS
Exploits0References1
Schneier on Security
Schneier on Securityadded 2023/06/27 8:36 p.m.11 views

Typing Incriminating Evidence in the Memo Field

Dont do it: Recently, the manager of the Harvard Med School morgue was accused of stealing and selling human body parts. Cedric Lodge and his wife Denise were among a half-dozen people arrested for some pretty grotesque crimes. This part is also at least a little bit funny though: Over a three-ye...

6.9AI score
Exploits0
Rows per page
Query Builder