Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

206 matches found

RedhatCVE
RedhatCVEadded 2026/02/04 1:20 p.m.2 views

CVE-2025-59902

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS5.6AI score0.00023EPSS
Exploits0References1
NVD
NVDadded 2026/02/03 10:15 a.m.1 views

CVE-2025-59902

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS0.00023EPSS
Exploits0References1
CVE
CVEadded 2026/02/03 9:28 a.m.5 views

CVE-2025-59902

CVE-2025-59902 is an HTML-injection vulnerability in NICE Chat. Attacker-controlled input in firstName/lastName can inject HTML into email transcripts, enabling phishing or impersonation. Affected information is shared across multiple vendors (NVD, Red Hat, EU ENISA, CVE lists) with no explicit v...

7.1CVSS5.6AI score0.00023EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/03 9:28 a.m.1 views

EUVD-2025-206732

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS5.6AI score0.00023EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/03 9:28 a.m.2 views

CVE-2025-59902 HTML injection in NICE Chat

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS5.6AI score0.00023EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/03 9:28 a.m.21 views

CVE-2025-59902 HTML injection in NICE Chat

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS0.00023EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/03 9:28 a.m.2 views

CVE-2025-59902

HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system...

7.1CVSS5.6AI score0.00023EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/02/03 12:0 a.m.3 views

PT-2026-5927

Name of the Vulnerable Software and Affected Versions NICE Chat affected versions not specified Description An HTML injection issue exists in NICE Chat. The issue allows an attacker to inject and display arbitrary HTML content within email transcripts. This is achieved by manipulating the firstNa...

7.1CVSS5.7AI score0.00023EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/02/03 12:0 a.m.2 views

NICE Chat 跨站脚本漏洞

NICE Chat is a web chat tool developed by NICE Chat Corporation. NICE Chat has a cross-site scripting vulnerability, which stems from HTML injection. This vulnerability may lead to phishing attacks, identity impersonation, or credential theft...

7.1CVSS5.7AI score0.00023EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:52 p.m.4 views

CVE-2014-4305

Multiple SQL injection vulnerabilities in NICE Recording eXpress aka Cybertech eXpress 6.5.7 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.7AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:49 p.m.4 views

CVE-2014-4308

Multiple cross-site scripting XSS vulnerabilities in NICE Recording eXpress aka Cybertech eXpress before 6.5.5 allow remote attackers to inject arbitrary web script or HTML via the 1 USRLNM parameter to myaccount/mysettings.edit.validate.asp or the frame parameter to 2...

4.3CVSS6AI score0.00225EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/12 8:46 p.m.2 views

EUVD-2025-134929

Malicious code in @mizukiyakane/nice npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/12 8:46 p.m.0 views

EUVD-2025-134930

Malicious code in @mizukiyakane/nice npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 4:47 p.m.2 views

Malicious code in tealove-nice11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9071690777060a1ff2e4bb785b84c2e162d3e1bb1f0f144ae0348f2d000990f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-168493 Malicious code in tealove-nice16 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a111fb23aba096646acce33d487ae3888094e358eff7eb298afee42988193ad8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVDadded 2025/11/12 3:4 a.m.1 views

EUVD-2025-117204

Malicious code in nice-silver-shrew npm...

6.6AI score
Exploits0
OSV
OSVadded 2025/11/11 8:11 p.m.1 views

MAL-2025-122070 Malicious code in nice_kangaroo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bc1e60b9edf57e322a320e5b703808998ead15f99ff2ad89f817fd8fd98e875 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 7:31 a.m.2 views

Malicious code in nice_barnacle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97fdd1f0c2372d9b3a65fc13b7328f3d37835983e278d8cc71b79573a3f81215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVDadded 2025/11/11 5:18 a.m.1 views

EUVD-2025-62909

Malicious code in niceraccoonrequirement npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 4:25 a.m.1 views

EUVD-2025-84583

Malicious code in nicechinchillaz3n npm...

6.6AI score
Exploits0
Rows per page
Query Builder