Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/03/27 10:51 p.m.1 views

CVE-2026-33635

iCalendar is a Ruby library for dealing with iCalendar files in the iCalendar format defined by RFC-5545. Starting in version 2.0.0 and prior to version 2.12.2, .ics serialization does not properly sanitize URI property values, enabling ICS injection through attacker-controlled input, adding...

4.3CVSS6AI score0.0005EPSS
Exploits1References1
Github Security Blog
Github Security Blogadded 2026/03/24 7:13 p.m.5 views

iCalendar has ICS injection via unsanitized URI property values

Summary .ics serialization does not properly sanitize URI property values, enabling ICS injection through attacker-controlled input, adding arbitrary calendar lines to the output. Details Icalendar::Values::Uri falls back to the raw input string when URI.parse fails and later serializes it with...

4.3CVSS5.9AI score0.0005EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2026/03/24 7:13 p.m.3 views

GHSA-PV9C-9MFH-HVXQ iCalendar has ICS injection via unsanitized URI property values

Summary .ics serialization does not properly sanitize URI property values, enabling ICS injection through attacker-controlled input, adding arbitrary calendar lines to the output. Details Icalendar::Values::Uri falls back to the raw input string when URI.parse fails and later serializes it with...

4.3CVSS5.9AI score0.0005EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2009-4156

Malware in sbrugna...

9.3CVSS6.4AI score0.0477EPSS
Exploits1References4
OSV
OSVadded 2021/05/06 11:2 a.m.1 views

OESA-2021-1171 resteasy security update

%global desc \ RESTEasy contains a JBoss project that provides frameworks to help\ build RESTful Web Services and RESTful Java applications. It is a fully\ certified and portable implementation of the JAX-RS specification. %desc %global extdesc %desc\ \ This package contains Security Fixes: A fla...

5.3CVSS6.7AI score0.00084EPSS
Exploits0References2
OSV
OSVadded 2021/03/26 5:15 p.m.0 views

UBUNTU-CVE-2021-20289

A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method's parameter value. The...

5.3CVSS6.7AI score0.00084EPSS
Exploits0References4
OpenVAS
OpenVASadded 2009/09/02 12:0 a.m.26 views

Google Chrome 'chromehtml: URI' DoS Vulnerability

Google Chrome is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.00543EPSS
Exploits1References3
seebug.org
seebug.orgadded 2008/04/30 12:0 a.m.34 views

SugarCRM Community Edition 4.5.1/5.0.0 File Disclosure Vulnerability

No description provided by source. Name SugarCRM – Local File Disclosure SugarCRM http://www.sugarcrm.com/docs/ReleaseNotes/OpenSourceReleaseNotes4.5.1j/ Advisories SugarReleaseNotes4.5.1j.2.6.html Bug 20522 http://dl.sugarforge.org/sugarcrm/SugarCE5.0Latest/SugarCE5.0.0/...

7.1AI score
Exploits0
Rows per page
Query Builder