Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-27638

Malicious code in bioql PyPI...

9.6CVSS6.6AI score0.00297EPSS
Exploits1References2
NVD
NVDadded 2024/04/04 2:15 a.m.11 views

CVE-2024-2692

SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS...

9CVSS9.5AI score0.00297EPSS
Exploits1References2
OSV
OSVadded 2024/04/04 2:15 a.m.4 views

CVE-2024-2692

SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS...

9CVSS9.2AI score
Exploits0References2
Cvelist
Cvelistadded 2024/04/04 1:26 a.m.14 views

CVE-2024-2692 SiYuan 3.0.3 - RCE via Server Side XSS

SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS...

9CVSS9.6AI score0.00297EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/04/04 1:26 a.m.11 views

CVE-2024-2692 SiYuan 3.0.3 - RCE via Server Side XSS

SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS...

9CVSS9.2AI score0.00297EPSS
Exploits1References2
CVE
CVEadded 2024/04/04 1:26 a.m.56 views

CVE-2024-2692

CVE-2024-2692 affects SiYuan version 3.0.3, with a Server-Side XSS weakness that allows an attacker to execute arbitrary commands on the server. The vulnerability is described across multiple sources as enabling remote command execution due to improper handling of input leading to server-side cod...

9CVSS9.3AI score0.00297EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2024/04/04 12:0 a.m.3 views

PT-2024-21583 · Siyuan · Siyuan

Name of the Vulnerable Software and Affected Versions: SiYuan version 3.0.3 Description: The issue allows executing arbitrary commands on the server due to the application being vulnerable to Server Side XSS. Recommendations: For SiYuan version 3.0.3, update to a version that fixes the Server Sid...

9CVSS6.4AI score0.00297EPSS
Exploits1References8
Cvelist
Cvelistadded 2024/02/20 12:1 a.m.18 views

CVE-2024-1648 electron-pdf 20.0.0 - Local File Read via Server Side XSS

electron-pdf version 20.0.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user...

7.5CVSS7.5AI score0.0024EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/02/19 11:59 p.m.13 views

CVE-2024-1647 pyhtml2pdf 0.0.6 - Local File Read via Server Side XSS

Pyhtml2pdf version 0.0.6 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user...

7.5CVSS7.2AI score0.0024EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/02/19 11:59 p.m.21 views

CVE-2024-1647 pyhtml2pdf 0.0.6 - Local File Read via Server Side XSS

Pyhtml2pdf version 0.0.6 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user...

7.5CVSS7.5AI score0.0024EPSS
Exploits1References2
OSV
OSVadded 2020/06/02 5:15 p.m.10 views

CVE-2019-11843

The MailPoet plugin before 3.23.2 for WordPress allows remote attackers to inject arbitrary web script or HTML using extra parameters in the URL Reflective Server-Side XSS...

6.1CVSS7.1AI score
Exploits0References3
Rows per page
Query Builder