CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/04/03 3:47 p.m.•3 views

CVE-2025-31797

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Sprout Clients sprout-clients allows Stored XSS.This issue affects Sprout Clients: from n/a through = 3.2...

6.5CVSS7.2AI score0.00883EPSS

Exploits0References1

Circl•added 2025/04/01 8:33 p.m.•1 views

CVE-2025-31797

creationtimestamp| type| source ---|---|--- 2025-04-01 20:33:21+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10002...

6.5CVSS8.7AI score0.00883EPSS

Exploits0References1

NVD•added 2025/04/01 3:16 p.m.•3 views

CVE-2025-31797

6.5CVSS0.00883EPSS

Exploits0References1

Cvelist•added 2025/04/01 2:51 p.m.•12 views

CVE-2025-31797 WordPress Sprout Clients plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00883EPSS

Exploits0References1

CVE•added 2025/04/01 2:51 p.m.•44 views

CVE-2025-31797

CVE-2025-31797 – Stored Cross‑Site Scripting in Sprout Clients (BoldGrid Sprout CRM/Lead Management). Affected: Sprout Clients versions from n/a up to 3.2. Root cause: Improper Neutralization of Input During Web Page Generation. Impact: stored XSS on vulnerable pages. Remediation: fix released in...

6.5CVSS7.2AI score0.00883EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 2:51 p.m.•5 views

CVE-2025-31797 WordPress Sprout Clients plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Sprout Clients allows Stored XSS. This issue affects Sprout Clients: from n/a through 3.2...

6.5CVSS6.9AI score0.00883EPSS

Exploits0References1

Circl•added 2021/09/02 7:35 a.m.•2 views

CVE-2021-31797

creationtimestamp| type| source ---|---|--- 2021-09-02 07:35:39+00:00| seen| https://t.me/cibsecurity/28201...

5.1CVSS5.5AI score0.00085EPSS

Exploits1References1

OSV•added 2021/09/02 12:15 a.m.•3 views

CVE-2021-31797

The user identification mechanism used by CyberArk Credential Provider prior to 12.1 is susceptible to a local host race condition, leading to password disclosure...

5.1CVSS6AI score0.00085EPSS

Exploits1References4

CVE•added 2021/09/01 11:58 p.m.•40 views

CVE-2021-31797

The CVE-2021-31797 issue affects CyberArk’s Credential Provider (prior to version 12.1). The vulnerability is a local race condition in the user-identification/loopback communication over TCP port 18923, which can lead to password disclosure. The exposed details indicate an inadequate synchroniza...

5.1CVSS5.1AI score0.00085EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by