Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

RedhatCVE
RedhatCVEadded 2025/11/20 12:21 a.m.5 views

CVE-2025-63243

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The slesSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

4.6CVSS5.9AI score0.00026EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/19 3:31 p.m.1 views

EUVD-2025-198158

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The slesSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

4.6CVSS5.4AI score0.00026EPSS
Exploits1References3
OSV
OSVadded 2025/11/19 3:15 p.m.1 views

CVE-2025-63243

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The slesSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

4.6CVSS5.7AI score0.00026EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/11/19 12:0 a.m.2 views

PT-2025-47458

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The sle sSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

4.6CVSS5.9AI score0.00026EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/11/19 12:0 a.m.3 views

CVE-2025-63243

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The slesSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

0.00026EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/11/19 12:0 a.m.1 views

CVE-2025-63243

A reflected cross-site scripting XSS vulnerability exists in the password change functionality of Pixeon WebLaudos 25.1 01. The slesSenha parameter to the loginAlterarSenha.asp file. An attacker can craft a malicious URL that, when visited by a victim, causes arbitrary JavaScript code to be...

5.5AI score0.00026EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/11/19 12:0 a.m.2 views

Pixeon WebLaudos 安全漏洞

Pixeon WebLaudos is an application from Pixeon that allows access to inspection reports issued by the system. A security vulnerability exists in Pixeon WebLaudos version 25.1 that originates from reflective cross-site scripting in the slesSenha parameter of the loginAlterarSenha.asp file, which...

4.6CVSS6.3AI score0.00026EPSS
Exploits1References3
CVE
CVEadded 2025/11/19 12:0 a.m.7 views

CVE-2025-63243

Pixeon WebLaudos 25.1 (01) is affected by a reflected XSS in the sle_sSenha parameter of loginAlterarSenha.asp. An attacker can craft a malicious URL that triggers arbitrary JavaScript in the victim’s browser within the application’s context, potentially enabling session cookie theft, data disclo...

4.6CVSS5.5AI score0.00026EPSS
Exploits1References2Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-16684

Malicious code in bioql PyPI...

7.5CVSS9.1AI score0.03893EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/06/04 12:14 a.m.5 views

CVE-2025-27956

Directory Traversal vulnerability in WebLaudos 24.2 04 allows a remote attacker to obtain sensitive information via the id parameter...

7.5CVSS6.4AI score0.03893EPSS
Exploits1References1
OSV
OSVadded 2025/06/02 6:15 p.m.0 views

CVE-2025-27956

Directory Traversal vulnerability in WebLaudos 24.2 04 allows a remote attacker to obtain sensitive information via the id parameter...

7.5CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2025/06/02 6:15 p.m.7 views

CVE-2025-27956

Directory Traversal vulnerability in WebLaudos 24.2 04 allows a remote attacker to obtain sensitive information via the id parameter...

7.5CVSS0.03893EPSS
Exploits1References1
CVE
CVEadded 2025/06/02 12:0 a.m.57 views

CVE-2025-27956

CVE-2025-27956 is a directory traversal vulnerability in WebLaudos 24.2 (04) that could allow a remote attacker to obtain sensitive information via the id parameter. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) yields a base score of 7.5 (HIGH). Affected product: WebLaudos 24.2 (04)....

7.5CVSS6.5AI score0.03893EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2025/06/02 12:0 a.m.8 views

CVE-2025-27956

Directory Traversal vulnerability in WebLaudos 24.2 04 allows a remote attacker to obtain sensitive information via the id parameter...

0.03893EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/06/02 12:0 a.m.7 views

CVE-2025-27956

Directory Traversal vulnerability in WebLaudos 24.2 04 allows a remote attacker to obtain sensitive information via the id parameter...

6.4AI score0.03893EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/06/02 12:0 a.m.2 views

PT-2025-23550 · Weblaudos · Weblaudos

Name of the Vulnerable Software and Affected Versions: WebLaudos version 24.2 04 Description: A Directory Traversal issue allows a remote attacker to obtain sensitive information via the id parameter. This enables the attacker to access confidential data. Recommendations: For WebLaudos version 24...

7.5CVSS9.1AI score0.03893EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/06/02 12:0 a.m.1 views

Pixeon WebLaudos 路径遍历漏洞

Pixeon WebLaudos is an application from Pixeon that allows access to inspection reports issued by the system. A security vulnerability exists in Pixeon WebLaudos version 24.2 04 that stems from an issue with the id parameter and could lead to access to sensitive information...

7.5CVSS8.9AI score0.03893EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/23 6:23 a.m.3 views

CVE-2024-48312

WebLaudos v20.8 118 was discovered to contain a cross-site scripting XSS vulnerability via the login page...

5.4CVSS6.2AI score0.00131EPSS
Exploits0References1
NVD
NVDadded 2024/11/05 5:15 p.m.7 views

CVE-2024-48312

WebLaudos v20.8 118 was discovered to contain a cross-site scripting XSS vulnerability via the login page...

5.4CVSS0.00131EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/11/05 12:0 a.m.1 views

PT-2024-33079 · Weblaudos · Weblaudos

Name of the Vulnerable Software and Affected Versions: WebLaudos version 20.8 118 Description: A cross-site scripting XSS issue was found in the login page, allowing potential attackers to inject malicious scripts. Recommendations: For version 20.8 118, update to a newer version that addresses th...

5.4CVSS6AI score0.00131EPSS
Exploits0References4
Rows per page
Query Builder