CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

193 matches found

CVE-2026-45669 Nuxt: Reflected XSS in `navigateTo()` external redirect

Nuxt is an open-source web development framework for Vue.js. From versions 3.4.3 to before 3.21.6 and 4.0.0-alpha.1 to before 4.4.6, navigateTo with external: true generates a server-side HTML redirect body containing a tag. The destination URL is only sanitized by replacing " with %22, leaving ,...

5.3CVSS5.4AI score0.00059EPSS

Exploits0References2

NVD•added 3 days ago•5 views

CVE-2026-53741

Simple Link Directory through 9.0.4 interpolates the sldnoresultsfound option into a JavaScript string literal without encoding. Because sanitizetextfield leaves quotes intact, a stored payload breaks out of the string and runs script for every page visitor...

5.4CVSS0.00029EPSS

Exploits0References2

Vulnrichment•added 3 days ago•5 views

CVE-2026-53741 Simple Link Directory through 9.0.4 Stored XSS via sld_no_results_found Option

5.4CVSS5.4AI score0.00029EPSS

Exploits0References2

Positive Technologies•added 3 days ago•8 views

PT-2026-48555

Simple Link Directory through 9.0.4 interpolates the sld no results found option into a JavaScript string literal without encoding. Because sanitize text field leaves quotes intact, a stored payload breaks out of the string and runs script for every page visitor...

5.4CVSS5.4AI score0.00029EPSS

Exploits0References3

Cvelist•added 4 days ago•34 views

CVE-2026-41003 Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting

An attacker able to influence values in RelyingPartyRegistration may be able to run arbitrary code on HTML forms generated by Spring Security filters. Affected versions: Spring Security 5.7.0 through 5.7.23; 5.8.0 through 5.8.25; 6.3.0 through 6.3.16; 6.4.0 through 6.4.16; 6.5.0 through 6.5.10;...

7.6CVSS0.00032EPSS

Exploits0References1

Vulnrichment•added 4 days ago•5 views

CVE-2026-41003 Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting

7.6CVSS5.8AI score0.00032EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:23 p.m.•6 views

CVE-2026-43938

YetAnotherForum.NET YAF.NET is a C ASP.NET forum. Prior to 4.0.5 and 3.2.12, the application's database logger YAFNET.Core/Logger/DbLogger.cs captures the incoming request's User-Agent header into a JObject, serializes it with JsonConvert, and stores the result in the EventLog.Description column...

8.1CVSS5.4AI score0.00013EPSS

Exploits0References1

Packet Storm•added 2026/06/05 12:0 a.m.•38 views

📄 Lyrion Music Server 9.2.0 metadata Persistent Cross Site Scripting

Lyrion Music Server version 9.2.0 stores media file metadata tags such as GENRE, ARTIST, and ALBUM exactly as written in the file and later renders them in its web interface without HTML-encoding, resulting in persistent cross site scripting. An attacker who gets a file with a malicious tag into...

7.2CVSS4.4AI score0.00032EPSS

Exploits2

Github Security Blog•added 2026/06/04 6:56 p.m.•9 views

WWBN AVideo: Stored XSS via Hostile YouTube Video Title in AVideo YouTubeAPI Gallery Section

Stored XSS via Hostile YouTube Video Title in AVideo YouTubeAPI Gallery Section Summary A stored Cross-Site Scripting vulnerability CWE-79; chained CWE-829, Inclusion of Functionality from Untrusted Control Sphere in the AVideo YouTubeAPI plugin renders the snippet.title field returned by the...

5.9AI score0.00031EPSS

Exploits0References3Affected Software1

OSV•added 2026/06/04 6:56 p.m.•6 views

GHSA-66Q5-CJ5G-WRFX WWBN AVideo: Stored XSS via Hostile YouTube Video Title in AVideo YouTubeAPI Gallery Section

4.7CVSS5.9AI score0.00031EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•9 views

PT-2026-46895

4.7CVSS5.9AI score0.00031EPSS

Exploits0References4

Positive Technologies•added 2026/06/04 12:0 a.m.•9 views

PT-2026-46849

4.7CVSS5.9AI score

Exploits0References4

Packet Storm•added 2026/06/01 12:0 a.m.•28 views

📄 Lightweight Music Server 3.76.0 Cross Site Scripting

Lightweight Music Server version 3.76.0 suffers from a persistent cross site scripting vulnerability. LMS stores media file metadata tags such as GENRE, ARTIST, and ALBUM exactly as written in the file and later renders them in its web interface without HTML-encoding. An attacker who gets a file...

5.3AI score

Exploits0

Tenable Nessus•added 2026/05/29 12:0 a.m.•12 views

Linux Distros Unpatched Vulnerability : CVE-2026-48525

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option b64: false, RFC...

5.3CVSS5.6AI score0.00054EPSS

Exploits1References4

Snyk•added 2026/05/28 4:50 p.m.•11 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the Base64URL decoding process. An attacker can cause excessive CPU and memory consumption by supplying an arbitrarily large payload segment when verifying detached JWS tokens wit...

6.9CVSS5.8AI score0.00054EPSS

Exploits1References2

NVD•added 2026/05/28 4:16 p.m.•12 views

CVE-2026-48525

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option "b64": false, RFC 7797, PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For...

5.3CVSS0.00054EPSS

Exploits1References1