Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CVE
CVEadded 2025/07/01 6:17 p.m.15 views

CVE-2025-53104

CVE-2025-53104 concerns the gluestack-ui project, where a command injection flaw existed in the discussion-to-slack.yml GitHub Actions workflow. The root cause was untrusted Discussion fields (title/body, etc.) being interpolated directly into shell commands in a run: block, allowing an attacker ...

9.1CVSS8.3AI score0.01335EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2025/05/13 8:17 p.m.12 views

Umbraco.Forms has HTML injection vulnerability in 'Send email' workflow

Impact The 'Send email' workflow does not HTML encode the user-provided field values in the sent email message, making any form with this workflow configured vulnerable, as it allows sending the message from a trusted system and address potentially bypassing spam and email client security systems...

6.3CVSS6.7AI score0.00263EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder