Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48857 matches found

Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.5 views

PT-2026-3533

The Custom Fonts – Host Your Fonts Locally plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'BCF Google Fonts Compatibility' class constructor function in all versions up to, and including, 2.1.16. This makes it possible for unauthenticated...

5.3CVSS5.5AI score0.00232EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.4 views

PT-2026-3609

A reflected cross-site scripting xss vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.00235EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.4 views

PT-2026-3606

A reflected cross-site scripting xss vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.0026EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.3 views

PT-2026-3595

A reflected cross-site scripting xss vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.00317EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.4 views

PT-2026-3605

A reflected cross-site scripting xss vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.00235EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.5 views

PT-2026-3727

Name of the Vulnerable Software and Affected Versions Oracle Life Sciences Central Coding version 7.0.1.0 Description An easily exploitable issue exists in the Oracle Life Sciences Central Coding product, specifically within the Platform component. An unauthenticated attacker with network access...

6.5CVSS7.4AI score0.00187EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.4 views

PT-2026-3684

Name of the Vulnerable Software and Affected Versions Oracle PeopleSoft versions 8.60 through 8.62 Description A flaw exists in the Push Notifications component of Oracle PeopleSoft Enterprise PeopleTools. A low-privileged attacker with network access via HTTP can compromise the system. Successfu...

5.4CVSS7.3AI score0.002EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.4 views

PT-2026-3708

Name of the Vulnerable Software and Affected Versions Oracle PeopleSoft Enterprise HCM Human Resources version 9.2 Description A flaw exists in the PeopleSoft Enterprise HCM Human Resources component, specifically within Company Dir / Org Chart Viewer and Employee Snapshot. This issue allows a...

6.1CVSS7.3AI score0.0019EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/01/20 12:0 a.m.3 views

WordPress plugin Dokan: Access control error vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

8.1CVSS5.8AI score0.00265EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/01/20 12:0 a.m.3 views

MedDream PACS Premium security vulnerability

MedDream PACS Premium is an enterprise-level image storage and management server suite developed by MedDream Corporation. Version 7.3.6.870 of MedDream PACS Premium contains a security vulnerability. This vulnerability stems from a reflective cross-site scripting vulnerability in the modifyHL7Rou...

6.1CVSS5.9AI score0.00286EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/01/20 12:0 a.m.4 views

MedDream PACS Premium security vulnerability

MedDream PACS Premium is an enterprise-level image storage and management server suite developed by MedDream Corporation. Version 7.3.6.870 of MedDream PACS Premium contains a security vulnerability. This vulnerability stems from the reflective cross-site scripting vulnerability present in the...

6.1CVSS5.9AI score0.00235EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/01/20 12:0 a.m.3 views

MedDream PACS Premium 安全漏洞

MedDream PACS Premium is an enterprise-class image storage and management server suite from MedDream. MedDream PACS Premium suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input by the modifyUser feature. An attacker could exploit the...

6.1CVSS5.9AI score0.00235EPSS
Exploits1References1
CNNVD
CNNVDadded 2026/01/20 12:0 a.m.4 views

MedDream PACS Premium 安全漏洞

MedDream PACS Premium is an enterprise-class image storage and management server suite from MedDream. A cross-site scripting vulnerability exists in MedDream PACS Premium and is caused by improper validation of user-supplied input by the Modify Anonymization feature. An attacker could exploit the...

6.1CVSS5.9AI score0.0026EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.7 views

PT-2026-3601

A reflected cross-site scripting xss vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.00235EPSS
Exploits1References2
Talos
Talosadded 2026/01/20 12:0 a.m.5 views

MedDream PACS Premium modifyHL7Route reflected cross-site scripting (XSS) vulnerability

Talos Vulnerability Report TALOS-2025-2265 MedDream PACS Premium modifyHL7Route reflected cross-site scripting XSS vulnerability January 20, 2026 CVE Number CVE-2025-53854 SUMMARY A reflected cross-site scripting xss vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premiu...

6.1CVSS5.7AI score0.00286EPSS
Exploits1
Talos
Talosadded 2026/01/20 12:0 a.m.4 views

MedDream PACS Premium modifyAnonymize reflected cross-site scripting (XSS) vulnerability

Talos Vulnerability Report TALOS-2025-2259 MedDream PACS Premium modifyAnonymize reflected cross-site scripting XSS vulnerability January 20, 2026 CVE Number CVE-2025-55071 SUMMARY A reflected cross-site scripting xss vulnerability exists in the modifyAnonymize functionality of MedDream PACS...

6.1CVSS5.7AI score0.0026EPSS
Exploits1
Talos
Talosadded 2026/01/20 12:0 a.m.6 views

MedDream PACS Premium modifyUser reflected cross-site scripting (XSS) vulnerability

Talos Vulnerability Report TALOS-2025-2268 MedDream PACS Premium modifyUser reflected cross-site scripting XSS vulnerability January 20, 2026 CVE Number CVE-2025-54853 SUMMARY A reflected cross-site scripting xss vulnerability exists in the modifyUser functionality of MedDream PACS Premium...

6.1CVSS5.7AI score0.00235EPSS
Exploits1
Talos
Talosadded 2026/01/20 12:0 a.m.4 views

MedDream PACS Premium modifyAutopurgeFilter reflected cross-site scripting (XSS) vulnerability

Talos Vulnerability Report TALOS-2025-2261 MedDream PACS Premium modifyAutopurgeFilter reflected cross-site scripting XSS vulnerability January 20, 2026 CVE Number CVE-2025-54814 SUMMARY A reflected cross-site scripting xss vulnerability exists in the modifyAutopurgeFilter functionality of MedDre...

6.1CVSS5.7AI score0.00235EPSS
Exploits1
CNVD
CNVDadded 2026/01/19 12:0 a.m.3 views

WordPress Stopwords for comments plugin cross-site request forgery vulnerability

The WordPress Stopwords for comments plugin is a pre-screening tool designed to help webmasters filter out user comments that contain certain banned words i.e. "stopwords". comments. The WordPress Stopwords for comments plugin suffers from a cross-site request forgery vulnerability that stems fro...

4.3CVSS5.8AI score0.00102EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/17 3:22 a.m.12 views

CVE-2026-1019

Police Statistics Database System developed by Gotac has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read, modify, and delete database contents by using a specific functionality...

9.8CVSS7.1AI score0.00525EPSS
Exploits0References1
Rows per page
Query Builder