CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-25779

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-19198

Malware in sbrugna...

6.1CVSS6.3AI score0.00233EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-19197

Malware in sbrugna...

6.1CVSS6.3AI score0.00234EPSS

Exploits2References4

RedhatCVE•added 2025/05/22 8:58 a.m.•8 views

CVE-2019-9838

VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...

6.1CVSS5.7AI score0.00234EPSS

Exploits2References1

ATTACKERKB•added 2022/08/08 2:15 p.m.•2 views

CVE-2022-2412

The Better Tag Cloud WordPress plugin through 0.99.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.9AI score0.00238EPSS

Exploits2References2

CNVD•added 2021/11/09 12:0 a.m.•15 views

vfront cross-site scripting vulnerability

vfront is a free open source front-end for MySQL or PostgreSQL databases written in PHP and Javascript. vfront version 0.99.5 is vulnerable to a cross-site scripting vulnerability. An attacker can exploit this vulnerability to conduct cross-site scripting attacks via the s parameter in...

6.1CVSS2.9AI score0.0024EPSS

Exploits1References1

OSV•added 2021/11/08 7:15 p.m.•1 views

CVE-2021-39420

Multiple Cross Site Scripting XSS vulnerabilities exist in VFront 0.99.5 via the 1 s parameter in searchall.php and the 2 msg parameter in add.attach.php...

6.1CVSS6.4AI score

Exploits0References1

NVD•added 2021/11/08 7:15 p.m.•7 views

CVE-2021-39420

Multiple Cross Site Scripting XSS vulnerabilities exist in VFront 0.99.5 via the 1 s parameter in searchall.php and the 2 msg parameter in add.attach.php...

6.1CVSS0.0024EPSS

Exploits1References1

Prion•added 2021/11/08 7:15 p.m.•7 views

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities exist in VFront 0.99.5 via the 1 s parameter in searchall.php and the 2 msg parameter in add.attach.php...

4.3CVSS6.2AI score0.0024EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/11/08 6:7 p.m.•9 views

CVE-2021-39420

Multiple Cross Site Scripting XSS vulnerabilities exist in VFront 0.99.5 via the 1 s parameter in searchall.php and the 2 msg parameter in add.attach.php...

6.3AI score0.0024EPSS

Exploits1References1

CVE•added 2021/11/08 6:7 p.m.•42 views

CVE-2021-39420

CVE-2021-39420 affects VFront 0.99.5 and is a cross-site scripting (XSS) vulnerability exposed via two input vectors: the s parameter in search_all.php and the msg parameter in add.attach.php. The public descriptions indicate XSS; no exploitation details or patch/version remediation are provided ...

6.1CVSS6.2AI score0.0024EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/11/08 12:0 a.m.•2 views

VFront 跨站脚本漏洞

6.1CVSS5.3AI score0.0024EPSS

Exploits1References2

NVD•added 2019/06/03 9:29 p.m.•10 views

CVE-2019-9839

VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...

6.1CVSS6.1AI score0.00233EPSS

Exploits2References2

NVD•added 2019/06/03 9:29 p.m.•11 views

CVE-2019-9838

VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...

6.1CVSS6AI score0.00234EPSS

Exploits2References2

Prion•added 2019/06/03 9:29 p.m.•15 views

Cross site scripting

VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...

4.3CVSS5.9AI score0.00234EPSS

Exploits2References2Affected Software1

Prion•added 2019/06/03 9:29 p.m.•10 views

Cross site scripting

VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...

4.3CVSS6AI score0.00233EPSS

Exploits2References2Affected Software1

OSV•added 2019/06/03 9:29 p.m.•2 views

CVE-2019-9839

VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...

6.1CVSS6.3AI score

Exploits0References2

Cvelist•added 2019/06/03 8:46 p.m.•13 views

CVE-2019-9838

VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...

6AI score0.00234EPSS

Exploits2References2

CVE•added 2019/06/03 8:44 p.m.•81 views

CVE-2019-9839

VFront 0.99.5 is affected by a Reflected Cross‑Site Scripting (XSS) vulnerability. The issue is triggered via the admin/menu_registri.php descrizione_g parameter or the admin/sync_reg_tab.php azzera parameter. Public references describe it as a reflected XSS with proof patterns such as [removed]a...

6.1CVSS6AI score0.00233EPSS

Exploits2References2Affected Software1

Cvelist•added 2019/06/03 8:44 p.m.•9 views

CVE-2019-9839

VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...

6.1AI score0.00233EPSS

Exploits2References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by