Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/05/20 4:35 a.m.8 views

CVE-2026-9056 Security fix for Qlik Talend Administration Center cross-site scripting vulnerability

A stored cross-site scripting vulnerability has been found in the Talend Administration Center. An attacker with permission to manage servers can store a XSS payload that can be triggered by a different user...

5.4CVSS5.5AI score0.00029EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/24 12:0 a.m.3 views

PT-2026-4544

ChatterMate is a no-code AI chatbot agent framework. In versions 1.0.8 and below, the chatbot accepts and executes malicious HTML/JavaScript payloads when supplied as chat input. Specifically, an payload containing a javascript: URI can be processed and executed in the browser context. This allow...

9.3CVSS5.4AI score0.00017EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2023/07/06 3:15 p.m.0 views

CVE-2023-37125

A stored cross-site scripting XSS vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5.4CVSS6.2AI score0.00104EPSS
Exploits1References2
NVD
NVDadded 2022/05/23 9:16 p.m.8 views

CVE-2022-30015

In Simple Food Website 1.0, a moderation can put the Cross Site Scripting Payload in any of the fields on http://127.0.0.1:1234/food/admin/allusers.php like Full Username, etc .This causes stored xss...

5.4CVSS0.00206EPSS
Exploits1References2
OSV
OSVadded 2021/03/12 8:24 p.m.1 views

GHSA-FH63-4R66-JC7V Cross-site scripting (XSS) in Apache Velocity Tools

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to...

6.1CVSS6.9AI score0.03207EPSS
Exploits0References9
Packet Storm
Packet Stormadded 2018/08/22 12:0 a.m.39 views

ZyXEL VMG3312-B10B Cross Site Scripting

Exploit Title: ZyXEL VMG3312-B10B - Cross-Site Scripting Date: 2018-08-21 Exploit Author: Samet AAHAdegN Vendor Homepage: https://www.zyxel.com/ Software Link: ftp://ftp.zyxel.com.tr/ZyXELURUNLERI/MODEMLER/VDSLMODEMLER/VMG3312-B10B/ Version: ZyXEL VMG3312-B10B Tested on: Mozilla Firefox 61.0.2 &...

7.4AI score
Exploits0
Prion
Prionadded 2018/02/09 11:29 p.m.11 views

Cross site scripting

mcholste Enterprise Log Search and Archive ELSA version revision 1205, commit 2cc17f1 and earlier contains a Cross Site Scripting XSS vulnerability in index view / that can result in . This attack appear to be exploitable via Payload delivered via the type, name, and value parameters of...

4.3CVSS5.9AI score0.0024EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder