Vulnerabilities
CSW's researchers investigate vulnerabilities that exist in operating systems, networks, products, software code, and infrastructure, staying steps ahead of malicious actors.
View our vulnerability disclosure policy
Latest Zero Days
CVE-2022-28291

Tenable
CVE-2022-28291 - Sensitive Information Disclosure in Tenable Nessus Scanner
Reported
May 2, 2022
Updated
Aug 31, 2022
CVE-2022-28290

Welaunch
CSW Zero Days | Reflected Cross-Site Scripting in WordPress
Reported
Mar 25, 2022
Updated
Mar 30, 2022
CVE-2021-33853

X2CRM
CVE-2021-33853 - Stored Cross-Site Scripting in X2CRM
Reported
Dec 1, 2021
Updated
Feb 1, 2022
CVE-2021-33852
.png)
WordPress
Stored Cross-Site Scripting in WordPress [Post Duplicator Plugin - 2.23]
Reported
Dec 2, 2021
Updated
Dec 31, 2021