Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/03/10 6:31 p.m.4 views

EUVD-2026-10508

Cross-site Scripting XSS allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page...

4.6CVSS5.8AI score0.00036EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 3:23 a.m.1 views

SUSE CVE-2022-42319

Xenstore: Guests can cause Xenstore to not free temporary memory When working on a request of a guest, xenstored might need to allocate quite large amounts of memory temporarily. This memory is freed only after the request has been finished completely. A request is regarded to be finished only...

6CVSS6.8AI score0.00029EPSS
Exploits0References18
OSV
OSVadded 2022/09/19 7:15 a.m.2 views

CVE-2022-40778

A stored Cross-Site Scripting XSS vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response...

5.4CVSS6AI score0.00434EPSS
Exploits0References2
Prion
Prionadded 2022/09/19 7:15 a.m.10 views

Cross site scripting

A stored Cross-Site Scripting XSS vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response...

4.9CVSS5.3AI score0.00434EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/09/19 6:8 a.m.13 views

CVE-2022-40778

A stored Cross-Site Scripting XSS vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response...

5.5AI score0.00434EPSS
Exploits0References2
Hacker One
Hacker Oneadded 2018/06/22 10:40 a.m.47 views

Mail.ru: Вывод значений переменных Nginx в теле страницы

При обращении к url вида: https://biz.mail.ru/$имяпеременнойnginx Значение этой переменной попадет в страницу ответа 404, во все места вида: e.mail.ru/login?lang=ruRU&Page=https%3A%2F%2Fbiz.mail.ru%2Fзначениепеременнойnginx Примеры запросов: 1 https://biz.mail.ru/test$realpathroot в ответе:...

7AI score
Exploits0
The Hacker News
The Hacker Newsadded 2011/03/13 5:17 p.m.9 views

Host-Extract - Host/IP Pattern Extractor Tool !

Host-Extract - Host/IP Pattern Extractor Tool ! This little ruby script tries to extract all IP/Host patterns in page response of a given URL and JavaScript/CSS files of that URL. With it, you can quickly identify internal IPs/Hostnames, development IPs/ports, cdn, load balancers, additional...

6.7AI score
Exploits0
Exploit DB
Exploit DBadded 2002/09/26 12:0 a.m.21 views

Zope 2.x - Incorrect XML-RPC Request Information Disclosure

source: https://www.securityfocus.com/bid/5806/info A vulnerability has been reported for Zope 2.5.1 and earlier. Reportedly, Zope does not handle XML-RPC requests properly. Specially crafted XML-RPC requests may cause Zope to respond to a request with an error page with system specific details...

7.4AI score
Exploits0
Rows per page
Query Builder