Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/01/30 9:59 p.m.1 views

CVE-2026-25154 LocalSend has Stored XSS in Web Share Interface via Filename

LocalSend is a free, open-source app that allows users to share files and messages with nearby devices over their local network without needing an internet connection. In versions up to and including 1.17.0, when a user initiates a "Share via Link" session, the LocalSend application starts a loca...

6.1CVSS5.3AI score0.00021EPSS
Exploits1References2
CVE
CVEadded 2026/01/30 9:59 p.m.33 views

CVE-2026-25154

CVE-2026-25154 affects LocalSend (versions up to and including 1.17.0). The Red Hat/NVD/OSV/CVE list entries describe a Stored XSS vulnerability in the Web Share Interface via the filename, with the client-side logic in app/assets/web/main.js and a patch in commit 8f3cec85aa29b2b13fed9b2f8e499e1a...

6.1CVSS5.8AI score0.00021EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2026/01/30 9:59 p.m.2 views

CVE-2026-25154 LocalSend has Stored XSS in Web Share Interface via Filename

LocalSend is a free, open-source app that allows users to share files and messages with nearby devices over their local network without needing an internet connection. In versions up to and including 1.17.0, when a user initiates a "Share via Link" session, the LocalSend application starts a loca...

6.1CVSS5.8AI score0.00021EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/01/30 9:59 p.m.23 views

CVE-2026-25154 LocalSend has Stored XSS in Web Share Interface via Filename

LocalSend is a free, open-source app that allows users to share files and messages with nearby devices over their local network without needing an internet connection. In versions up to and including 1.17.0, when a user initiates a "Share via Link" session, the LocalSend application starts a loca...

6.1CVSS0.00021EPSS
Exploits1References2
CVE
CVEadded 2026/01/03 11:33 p.m.9 views

CVE-2025-3646

The CVE affects Petlibro Smart Pet Feeder Platform up to version 1.7.31. The vulnerability is an authorization bypass in the device share API caused by missing permission checks, allowing unauthorized users to add themselves as shared owners and view owner information. This is a network-exposed i...

8.2CVSS6.2AI score0.00039EPSS
Exploits0References2Affected Software1
OwnCloud
OwnCloudadded 2013/07/09 6:16 p.m.17 views

XSS in "Share Interface" - ownCloud

Multiple stored and reflected XSS have been adressed. Affected Software ownCloud Server 5.0.8 Action Taken Acknowledgements The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory: Lukas Reschke - ownCloud Inc. [email protected] -...

6.3AI score
Exploits0Affected Software1
OwnCloud
OwnCloudadded 2013/07/09 2:0 a.m.22 views

Server: XSS in "Share Interface"

Multiple stored and reflected XSS have been adressed. For more information please consult the official advisory. This advisory is licensed CC BY-SA 4.0...

6.2AI score
Exploits0Affected Software1
Rows per page
Query Builder