CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 6:43 p.m.•4 views

CVE-2021-40927

Cross-site scripting XSS vulnerability in callback.php in Spotify-for-Alfred 0.13.9 and below allows remote attackers to inject arbitrary web script or HTML via the error parameter...

6.1CVSS5.9AI score0.00283EPSS

Exploits1

Circl•added 2021/10/01 8:15 p.m.•1 views

CVE-2021-40927

creationtimestamp| type| source ---|---|--- 2021-10-01 20:15:38+00:00| seen| https://t.me/cibsecurity/29824...

6.1CVSS6.1AI score0.00283EPSS

Exploits1References1

NVD•added 2021/10/01 4:15 p.m.•11 views

CVE-2021-40927

Cross-site scripting XSS vulnerability in callback.php in Spotify-for-Alfred 0.13.9 and below allows remote attackers to inject arbitrary web script or HTML via the error parameter...

6.1CVSS0.00283EPSS

Exploits1References2

Cvelist•added 2021/10/01 3:42 p.m.•12 views

CVE-2021-40927

Cross-site scripting XSS vulnerability in callback.php in Spotify-for-Alfred 0.13.9 and below allows remote attackers to inject arbitrary web script or HTML via the error parameter...

6.2AI score0.00283EPSS

Exploits1References2

CVE•added 2021/10/01 3:42 p.m.•42 views

CVE-2021-40927

CVE-2021-40927 is an XSS vulnerability in the Spotify-for-Alfred project (callback.php) affecting version 0.13.9 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the error parameter. According to NVD metrics, the exploitability is network-based with medium ...

6.1CVSS6AI score0.00283EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by