CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/01/15 12:23 a.m.•2 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00016EPSS

Exploits1References1

OSV•added 2026/01/14 6:16 p.m.•2 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00016EPSS

Exploits1References2

CNNVD•added 2026/01/14 12:0 a.m.•5 views

pH7 Social Dating Builder 17.9.1 安全漏洞

pH7 Social Dating Builder is an open source social dating system from pH7 Social Dating CMS. A security vulnerability exists in pH7 Social Dating Builder version 17.9.1, which stems from stored cross-site scripting in the user profile description field...

5.4CVSS6AI score0.00016EPSS

Exploits1References3

CVE•added 2026/01/14 12:0 a.m.•4 views

CVE-2025-63644

CVE-2025-63644 is a stored XSS in pH7Software pH7-Social-Dating-CMS 17.9.1, specifically in the user profile Description field. The CVE entry lists CVSS v3.1 details: AV:N, AC:L, PR:L, UI:R, S:C, C:L/I:L, A:N with a base score of 5.4 (Medium). The root cause is a vulnerability in the Description ...

5.4CVSS5.3AI score0.00016EPSS

Exploits1References2Affected Software1

EUVD•added 2026/01/14 12:0 a.m.•2 views

EUVD-2026-2439

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

6.1CVSS5.2AI score0.00016EPSS

Exploits1References3

Cvelist•added 2025/03/03 4:2 p.m.•11 views

CVE-2025-0555 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

A Cross Site Scripting XSS vulnerability in GitLab-EE affecting all versions from 16.6 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows an attacker to bypass security controls and execute arbitrary scripts in a users browser under specific conditions...

7.7CVSS0.0005EPSS

Exploits0References2

CNNVD•added 2025/03/03 12:0 a.m.•1 views

GitLab 跨站脚本漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A cross-site scripting vulnerability exists in GitLab versions prior to 16.6...

5.4CVSS6AI score0.0008EPSS

Exploits0References4

OSV•added 2021/02/18 8:15 p.m.•1 views

DEBIAN-CVE-2020-35776

A buffer overflow in respjsipdiversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses...

6.5CVSS6.7AI score0.00085EPSS

Exploits1References1

CNNVD•added 2021/02/18 12:0 a.m.•3 views

Digium Asterisk Security Vulnerability

Digium Asterisk is a set of open source telephone exchange PBX system software from Digium, USA. The software supports voicemail, multi-party voice conferencing, interactive voice response IVR, and more. A security vulnerability exists in Digium Asterisk. The vulnerability stems from allowing a...

5.9CVSS6.3AI score0.00811EPSS

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by