Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

43 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-8437

Malware in sbrugna...

4.8CVSS4.9AI score0.00235EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-13438

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00181EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-18488

Malicious code in bioql PyPI...

4.8CVSS6.3AI score0.00078EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-22459

Malicious code in bioql PyPI...

4.8CVSS6.3AI score0.00284EPSS
Exploits3References3
Veracode
Veracodeadded 2025/08/04 5:50 a.m.4 views

Cross-site Scripting (XSS)

Mezzanine CMS is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper input sanitization due to failure to filter user-supplied input in the /blog/blogpost/add component, allowing injection of malicious scripts into blog posts...

4.8CVSS6AI score0.00284EPSS
Exploits3References3Affected Software1
Packet Storm
Packet Stormadded 2025/07/29 12:0 a.m.83 views

📄 Mezzanine CMS 6.1.0 Cross Site Scripting

Mezzanine CMS version 6.10 suffers from a persistent cross site scripting vulnerability. Exploit Title: Mezzanine CMS 6.1.0 Stored Cross Site Scripting XSS via component /blog/blogpost/add Date: 23/07/2025 Exploit Author: Kevin Dicks Vendor Homepage: https://github.com/stephenmcd/mezzanine Softwa...

4.8CVSS6.6AI score0.00284EPSS
Exploits3
Exploit DB
Exploit DBadded 2025/07/28 12:0 a.m.296 views

Mezzanine CMS 6.1.0 - Stored Cross Site Scripting (XSS)

Exploit Title: Mezzanine CMS 6.1.0 Stored Cross Site Scripting XSS via component /blog/blogpost/add Date: 23/07/2025 Exploit Author: Kevin Dicks Vendor Homepage: https://github.com/stephenmcd/mezzanine Software Link: https://github.com/stephenmcd/mezzanine Version: 6.1.0 Category: Web Application...

4.8CVSS6.5AI score0.00284EPSS
Exploits3
RedhatCVE
RedhatCVEadded 2025/07/25 12:28 a.m.3 views

CVE-2025-50481

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS6AI score0.00284EPSS
Exploits3References1
OSV
OSVadded 2025/07/23 6:30 p.m.3 views

GHSA-269J-37WW-CMH3 Mezzanine CMS vulnerable to Cross-site Scripting

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS5.4AI score0.00284EPSS
Exploits3References3
Github Security Blog
Github Security Blogadded 2025/07/23 6:30 p.m.6 views

Mezzanine CMS vulnerable to Cross-site Scripting

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS5.4AI score0.00284EPSS
Exploits3References4Affected Software1
OSV
OSVadded 2025/07/23 4:15 p.m.3 views

CVE-2025-50481

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS5.9AI score
Exploits0References2
NVD
NVDadded 2025/07/23 4:15 p.m.4 views

CVE-2025-50481

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

4.8CVSS0.00284EPSS
Exploits3References2
Positive Technologies
Positive Technologiesadded 2025/07/23 12:0 a.m.2 views

PT-2025-30602 · Unknown · Mezzanine Cms

Name of the Vulnerable Software and Affected Versions: Mezzanine CMS version 6.1.0 Description: A cross-site scripting XSS vulnerability exists in the /blog/blogpost/add component of Mezzanine CMS. This allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into ...

4.8CVSS5.3AI score0.00284EPSS
Exploits3References9
CVE
CVEadded 2025/07/23 12:0 a.m.15 views

CVE-2025-50481

Mezzanine CMS v6.1.0 contains a stored XSS vulnerability in the /blog/blogpost/add component. The root cause is insufficient input validation that allows injecting crafted payloads into blog posts to execute arbitrary scripts. Exploit activity is evidenced in exploit databases (e.g., Exploit-DB, ...

4.8CVSS5.5AI score0.00284EPSS
Exploits3References2Affected Software1
Cvelist
Cvelistadded 2025/07/23 12:0 a.m.6 views

CVE-2025-50481

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

0.00284EPSS
Exploits3References2
Vulnrichment
Vulnrichmentadded 2025/07/23 12:0 a.m.3 views

CVE-2025-50481

A cross-site scripting XSS vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post...

5.5AI score0.00284EPSS
Exploits3References2
Veracode
Veracodeadded 2025/06/23 5:53 a.m.3 views

Cross-Site Scripting (XSS)

Mezzanine CMS is vulnerable to Stored Cross-Site Scripting XSS. The vulnerability is due to improper input sanitization in the displayablelinksjs function, allowing attackers to inject malicious JavaScript into blog post titles that executes in another admin's browser...

4.8CVSS5.5AI score0.00078EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVEadded 2025/06/19 11:23 a.m.5 views

CVE-2025-6050

Mezzanine CMS, in versions prior to 6.1.1, contains a Stored Cross-Site Scripting XSS vulnerability in the admin interface. The vulnerability exists in the "displayablelinksjs" function, which fails to properly sanitize blog post titles before including them in JSON responses served via...

4.8CVSS5.7AI score0.00078EPSS
Exploits1References1
Github Security Blog
Github Security Blogadded 2025/06/17 12:31 p.m.4 views

Mezzanine CMS has a Stored Cross-Site Scripting (XSS) vulnerability in the displayable_links_js function

Mezzanine CMS, in versions prior to 6.1.1, contains a Stored Cross-Site Scripting XSS vulnerability in the admin interface. The vulnerability exists in the "displayablelinksjs" function, which fails to properly sanitize blog post titles before including them in JSON responses served via...

4.8CVSS5.2AI score0.00078EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2025/06/17 12:31 p.m.3 views

GHSA-7PR5-W74R-JJJ7 Mezzanine CMS has a Stored Cross-Site Scripting (XSS) vulnerability in the displayable_links_js function

Mezzanine CMS, in versions prior to 6.1.1, contains a Stored Cross-Site Scripting XSS vulnerability in the admin interface. The vulnerability exists in the "displayablelinksjs" function, which fails to properly sanitize blog post titles before including them in JSON responses served via...

4.8CVSS5.5AI score0.00078EPSS
Exploits1References6
Rows per page
Query Builder