Lucene search
K

9 matches found

Circl
Circl
added 2026/06/03 11:43 a.m.8 views

CVE-2026-25551

creationtimestamp| type| source ---|---|--- 2026-06-03 11:43:22+00:00| seen| https://gist.github.com/VAMorales/dde5b1c0415a8505ccd6fafdb095a618...

8.5CVSS5.8AI score0.0013EPSS
Exploits0References1
Circl
Circl
added 2024/03/03 9:26 a.m.8 views

CVE-2024-25551

creationtimestamp| type| source ---|---|--- 2024-03-03 09:26:36+00:00| seen| https://t.me/ctinow/198617 2024-03-03 09:26:40+00:00| seen| https://t.me/ctinow/198621 2024-03-03 18:16:41+00:00| seen| https://t.me/ctinow/198856...

6.1CVSS4.8AI score0.0038EPSS
Exploits0References3
OSV
OSV
added 2024/03/03 8:15 a.m.5 views

CVE-2024-25551

Cross Site Scripting XSS vulnerability in sourcecodester Simple Student Attendance System v1.0 allows attackers to execute arbitrary code via crafted GET request to web application URL...

6.1CVSS6.1AI score0.0038EPSS
Exploits0References1
CVE
CVE
added 2024/03/03 12:0 a.m.58 views

CVE-2024-25551

CVE-2024-25551 is a Cross Site Scripting (XSS) vulnerability affecting sourcecodester Simple Student Attendance System v1.0. A crafted GET request to the web application URL can allow an attacker to execute arbitrary code. Root cause details are not expanded beyond the XSS description in the prov...

6.1CVSS6.4AI score0.0038EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/03 12:0 a.m.17 views

CVE-2024-25551

Cross Site Scripting XSS vulnerability in sourcecodester Simple Student Attendance System v1.0 allows attackers to execute arbitrary code via crafted GET request to web application URL...

6.3AI score0.0038EPSS
Exploits0References1
CVE
CVE
added 2023/04/18 8:37 p.m.47 views

CVE-2023-25551

Summary of CVE-2023-25551 (CWE-79, XSS) : A cross-site scripting vulnerability exists in Schneider Electric StruxureWare Data Center Expert (DCE) file upload endpoint, exploitable by tampering with HTTP parameters. Affected products: StruxureWare Data Center Expert (versions prior to 7.9.2). Root...

6.1CVSS6.3AI score0.00397EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/18 8:37 p.m.8 views

CVE-2023-25551

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists on a DCE file upload endpoint when tampering with parameters over HTTP. Affected products: StruxureWare Data Center Expert V7.9.2 and prior...

6.1CVSS6.4AI score0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/03/09 6:27 p.m.10 views

CVE-2022-25551

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function formSetSysToolDDNS. This vulnerability allows attackers to cause a Denial of Service DoS via the ddnsDomain parameter...

7.8AI score0.01219EPSS
Exploits1References1
CVE
CVE
added 2022/03/09 6:27 p.m.84 views

CVE-2022-25551

CVE-2022-25551 affects Tenda AX1806 v1.0.0.1 and is caused by a stack overflow in the FormSetSysToolDDNS function, exploitable via the ddnsDomain parameter to trigger a DoS. The CVE entry documents a high-severity impact (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) with network access and no user intera...

7.8CVSS7.6AI score0.01219EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder