Home/Alerts/Alert detail/

Cross Site Scripting (Persistent) - Prime

Top Security News

New NailaoLocker ransomware used against EU healthcare orgs

Black Basta ransomware gang's internal chat logs leak online

Windows Server 2025 released—here are the new features

SonicWall firewall bug leveraged in attacks after PoC exploit release

Chinese hackers abuse Microsoft APP-v tool to evade antivirus

Data Leak Exposes TopSec's Role in China's Censorship-as-a-Service Operations

SpyLend Android malware downloaded 100,000 times from Google Play

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Top Alert List

Latest CVE List

CVE-2025-24989 Microsoft Power Pages Improper Access Control Vulnerability

CVE-2025-23209 Craft CMS Code Injection Vulnerability

CVE-2025-0111 Palo Alto Networks PAN-OS File Read Vulnerability

CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

CVE-2025-0108 Palo Alto Networks PAN-OS Authentication Bypass Vulnerability

CVE-2024-57727 SimpleHelp Path Traversal Vulnerability

CVE-2024-41710 Mitel SIP Phones Argument Injection Vulnerability

CVE-2025-24200 Apple iOS and iPadOS Incorrect Authorization Vulnerability

CVE-2025-21391 Microsoft Windows Storage Link Following Vulnerability

CVE-2025-21418 Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability

Common CWEs

CWE-219 Storage of File with Sensitive Data Under Web Root

CWE-943 Improper Neutralization of Special Elements in Data Query Logic

CWE-552 Files or Directories Accessible to External Parties

CWE-1421 Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution

CWE-384 Session Fixation

CWE-668 Exposure of Resource to Wrong Sphere

CWE-75 Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

CWE-820 Missing Synchronization

CWE-282 Improper Ownership Management

CWE-13 ASP.NET Misconfiguration: Password in Configuration File

Free online web security scanner

Don't show website scan report rating on the leaderboard