Your AI Apps Don’t Pentest Themselves
See How Novee AI Red Teams Your LLMs
Your AI Apps Don’t Pentest Themselves
See How Novee AI Red Teams Your LLMs
Back
About
Resources
News
Contact
Careers
Book a demo
Book a demo
Blog
Articles, research and updates
Labs
Some of our latest findings
Exploit Registry
List of validated vulnerabilities
Buyer's guide
The definitive guide to AI pentesting
Exploit Registry
Last Updated On 27 Mar, 2026
MEDIUM
Stored XSS (WAF Bypass) via Collaboration Feature
Discovered By
Novee Agent
Published on
18 Feb, 2026
CRITICAL
OS Command Injection in Foxit PDF SDK for Web – Signature Server
Discovered By
Novee Agent
Published on
18 Feb, 2026
HIGH
CVE-2025-70400
Full Read SSRF in WebViewer Server via iFrame Rendering
Discovered By
Novee Agent
Published on
18 Feb, 2026
MEDIUM
CVE-2025-66500
DOM XSS via Unsafe postMessage Handler
Discovered By
Novee Agent
Published on
18 Feb, 2026
HIGH
CVE-2025-70401
Stored DOM XSS via Annotation Author Field
Discovered By
Novee Agent
Published on
18 Feb, 2026
CRITICAL
CVE-2025-70402
DOM XSS via Remote UI Configuration (uiConfig)
Discovered By
Novee Agent
Published on
18 Feb, 2026
«
1
2
16
Vulnerabilities Discovered
2
CRITICAL
3
HIGH
11
MEDIUM
0
LOW