Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2025/11/19 4:40 p.m.2 views

CVE-2025-65019 Astro Cloudflare adapter has a Stored Cross Site Scripting vulnerability in /_image endpoint

Astro is a web framework. Prior to version 5.15.9, when using Astro's Cloudflare adapter @astrojs/cloudflare with output: 'server', the image optimization endpoint /image contains a critical vulnerability in the isRemoteAllowed function that unconditionally allows data: protocol URLs. This enable...

5.4CVSS5.7AI score0.00033EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/11/19 4:40 p.m.14 views

CVE-2025-65019 Astro Cloudflare adapter has a Stored Cross Site Scripting vulnerability in /_image endpoint

Astro is a web framework. Prior to version 5.15.9, when using Astro's Cloudflare adapter @astrojs/cloudflare with output: 'server', the image optimization endpoint /image contains a critical vulnerability in the isRemoteAllowed function that unconditionally allows data: protocol URLs. This enable...

5.4CVSS0.00033EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/11/19 12:0 a.m.3 views

PT-2025-47490

Name of the Vulnerable Software and Affected Versions Astro versions prior to 5.15.9 Description Astro, a web framework, has an issue when using the Cloudflare adapter @astrojs/cloudflare with output set to 'server'. The image optimization endpoint '/ image' includes a flaw in the isRemoteAllowed...

6.1CVSS5.7AI score0.00033EPSS
Exploits1References9
Oracle linux
Oracle linuxadded 2025/08/05 12:0 a.m.5 views

qt5-qt3d security update

5.15.9-2 - Assimp: Fix heap-based overflow in Assimp::LWO::AnimResolver::UpdateAnimRangeSetup Resolves: RHEL-105000 - Assimp: Fix heap-based overflow in Assimp::ASE::Parser::ParseLV4MeshBonesVertices Resolves: RHEL-105005...

7.8CVSS5.6AI score0.00059EPSS
Exploits2
CBLMariner
CBLMarineradded 2023/05/25 9:38 a.m.23 views

CVE-2020-0569 affecting package qt5-qtsvg for versions less than 5.15.9-1

CVE-2020-0569 affecting package qt5-qtsvg for versions less than 5.15.9-1. This CVE either no longer is or was never applicable...

5.7CVSS6.5AI score0.0033EPSS
Exploits0
OSV
OSVadded 2022/04/22 2:15 p.m.3 views

AZL-26757 CVE-2022-27404 affecting package qt5-qtbase for versions less than 5.15.9-1

FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfntinitface...

9.8CVSS7.1AI score0.00123EPSS
Exploits1References1
OpenVAS
OpenVASadded 2019/05/06 12:0 a.m.39 views

Apache ActiveMQ < 5.15.9 DoS Vulnerability - Linux

In Apache ActiveMQ unmarshalling corrupt MQTT frame can lead to broker Out of Memory exception making it unresponsive. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.6AI score0.08918EPSS
Exploits0References1
Rows per page
Query Builder