Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2020-3077

Malware in sbrugna...

7.5CVSS7.5AI score0.00162EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/08/08 3:31 p.m.6 views

CVE-2025-8355 XXE leading to SSRF

In Xerox FreeFlow Core version 8.0.4, improper handling of XML input allows injection of external entities. An attacker can craft malicious XML containing references to internal URLs, this results in a Server-Side Request Forgery SSRF...

7.5CVSS0.00341EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/08/07 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-49796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an...

9.1CVSS6.6AI score0.01777EPSS
Exploits0References2
CVE
CVEadded 2025/05/05 7:21 p.m.57 views

CVE-2025-46726

Langroid prior to 0.53.4 is vulnerable via the XMLToolMessage class to untrusted XML input, enabling DoS and potential disclosure of local files. The issue is mitigated by upgrading to version 0.53.4, which initializes the XML parser with safeguards against XXE, billionaire laughs, and external D...

9.1CVSS6.3AI score0.00446EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/04/16 10:15 p.m.1 views

CVE-2024-21048

Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite component: XML input. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Web...

4.3CVSS7.1AI score0.00376EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2018/07/10 12:13 a.m.20 views

Security Bulletin: FileNet Content Management Interoperability Services (CMIS), which ships with IBM Content navigator, is affected by the ability to parse untrusted XML input containing a reference to an external entity

Summary FileNet Content Management Interoperability Services CMIS, which ships with IBM Content Navigator, is affected by the following vulnerability: Ability to process untrusted XML input containing a reference to an external entity that is parsed by a weekly configured XML parser. Vulnerabilit...

8.2CVSS1.1AI score0.00528EPSS
Exploits0Affected Software1
CNVD
CNVDadded 2017/11/01 12:0 a.m.2 views

SyncBreeze Enterprise Arbitrary Code Execution Vulnerability

SyncBreeze is a fast, powerful and reliable file synchronization solution for local disks, network shares, NAS storage devices and enterprise storage systems. An arbitrary code execution vulnerability exists in Flexense SyncBreeze Enterprise 10.1.16. An attacker can trigger a buffer overflow by...

7.8CVSS8.3AI score0.10414EPSS
Exploits4References1
Rows per page
Query Builder