Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/10/25 5:31 a.m.11 views

CVE-2025-11238

CVE-2025-11238 concerns the WordPress plug‑in Watu Quiz. The vulnerability is a Stored Cross‑Site Scripting flaw triggered by the HTTP Referer header due to insufficient input sanitization and output escaping when the “Save source URL” option is enabled. Affected versions are those less than or e...

7.2CVSS5.1AI score0.00145EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 3:15 p.m.8 views

CVE-2020-15902

Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...

6.1CVSS5.8AI score0.42821EPSS
Exploits0
wpexploit
wpexploitadded 2022/02/04 12:0 a.m.87 views

IP2Location Country Blocker < 2.26.9 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed. As admin, enable Frontend Blocking and put the following payload in the Display page when visitor is blocked U...

0.4AI score
Exploits0References2
WPVulnDB
WPVulnDBadded 2022/02/04 12:0 a.m.18 views

IP2Location Country Blocker < 2.26.9 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed. PoC As admin, enable Frontend Blocking and put the following payload in the Display page when visitor is block...

2.8AI score
Exploits0References2Affected Software1
OSV
OSVadded 2020/07/22 10:15 p.m.1 views

CVE-2020-15902

Graph Explorer in Nagios XI before 5.7.2 allows XSS via the link url option...

6.1CVSS6.4AI score0.42821EPSS
Exploits0References3
CNVD
CNVDadded 2016/04/16 12:0 a.m.2 views

Juniper Networks Junos OS Competitive Conditions Vulnerability

Juniper Networks Junos OS is a network operating system dedicated to the company's hardware systems. A competitive condition vulnerability in the Juniper Networks Junos OS Op script Op URL option allows a local attacker to exploit the vulnerability to elevate privileges and take full control of t...

8.8CVSS6.7AI score0.00807EPSS
Exploits0References1
Prion
Prionadded 2016/04/15 2:59 p.m.13 views

Race condition

Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before...

6.5CVSS7.2AI score0.00807EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2016/04/15 2:0 p.m.16 views

CVE-2016-1264

Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before...

8.7AI score0.00807EPSS
Exploits0References2
Rows per page
Query Builder