CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Circl•added 2026/03/31 10:8 p.m.•1 views

CVE-2026-34443

creationtimestamp| type| source ---|---|--- 2026-03-31 22:08:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mif6v2tnfy2s...

6.9CVSS5.8AI score0.00277EPSS

Exploits1References1

ATTACKERKB•added 2026/03/31 9:28 p.m.•1 views

CVE-2026-34443

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.211, checkIpByMask in app/Misc/Helper.php checks whether the input IP contains a / character. Plain IP addresses never contain /, so the function always returns false without checking any CIDR...

6.9CVSS5.8AI score0.00277EPSS

Exploits1References4Affected Software1

RedhatCVE•added 2026/01/09 9:5 a.m.•13 views

CVE-2024-34443

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemePunch OHG Slider Revolution allows Stored XSS.This issue affects Slider Revolution: from n/a before 6.7.11...

5.9CVSS5.2AI score0.00283EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:23 a.m.•5 views

CVE-2023-34443

Combodo iTop is a simple, web based IT Service Management tool. When displaying page Run queries Cross-site Scripting XSS are possible for scripts outside of script tags. This has been fixed in versions 2.7.9, 3.0.4, 3.1.0. All users are advised to upgrade. There are no known workarounds for this...

8.8CVSS6.1AI score0.00287EPSS

Exploits0References1

Circl•added 2024/11/05 2:9 a.m.•6 views

CVE-2023-34443

creationtimestamp| type| source ---|---|--- 2024-11-05 02:09:22+00:00| seen| https://t.me/cvedetector/9806...

8.8CVSS4.8AI score0.00287EPSS

Exploits0References1

Cvelist•added 2024/06/19 2:53 p.m.•41 views

CVE-2024-34443 WordPress Slider Revolution plugin < 6.7.11 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00283EPSS

Exploits1References2

CVE•added 2024/06/19 2:53 p.m.•82 views

CVE-2024-34443

CVE-2024-34443 describes a Stored XSS in the WordPress Slider Revolution plugin (revslider) from ThemePunch OHG, affected before version 6.7.11. Public sources (NVD, Red Hat) confirm the vulnerability is due to Improper Neutralization of Input During Web Page Generation. The remediation is to upg...

5.9CVSS5.2AI score0.00283EPSS

Exploits1References2Affected Software1

Patchstack•added 2024/05/28 12:0 a.m.•33 views

WordPress Slider Revolution Plugin < 6.7.11 is vulnerable to Cross Site Scripting (XSS)

Software Slider Revolution Type Plugin Vulnerable versions 6.7.11 Fixed in 6.7.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34443 Patch priority Low CVSS severity Low 5.9 Developer ThemePunch PSID 5d432eb3f5ab Credits Rafie Muhammad Patchstack Required...

5.9CVSS6.6AI score0.00283EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/02/01 4:19 a.m.•4 views

CVE-2022-34443

Dell Rugged Control Center, versions prior to 4.5, contain an Improper Input Validation in the Service EndPoint. A Local Low Privilege attacker could potentially exploit this vulnerability, leading to an Escalation of privileges...

7.8CVSS7.6AI score0.0018EPSS

Exploits0References1

CVE•added 2023/02/01 4:19 a.m.•42 views

CVE-2022-34443

Dell Rugged Control Center (Dell) before version 4.5 is affected. The vulnerability is caused by improper input validation in the Service EndPoint, enabling a local low-privilege attacker to escalate privileges. The issue is documented across multiple sources and versions prior to 4.5 are impacte...

7.8CVSS7.5AI score0.0018EPSS

Exploits0References1Affected Software1

Zero Day Initiative•added 2012/02/08 12:0 a.m.•13 views

Total Defense Suite UNC Management Console ExportReport SQL Injection Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of CA Total Defense Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ExportReport stored procedure, accessed via the management.asmx console. Th...

10CVSS8.6AI score

Exploits0

securityvulns•added 2011/04/19 12:0 a.m.•72 views

ZDI-11-127: CA Total Defense Suite UNCWS Web Service getDBConfigSettings Credential Disclosure Vulnerability

ZDI-11-127: CA Total Defense Suite UNCWS Web Service getDBConfigSettings Credential Disclosure Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-127 April 13, 2011 -- CVE ID: CVE-2011-1655 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: CA -- Affected Products: CA Tota...

7.5CVSS1AI score0.11975EPSS

Exploits0

securityvulns•added 2011/04/19 12:0 a.m.•50 views

ZDI-11-132: CA Total Defense Suite UNC Management Console DeleteReportLayout SQL Injection Vulnerability

ZDI-11-132: CA Total Defense Suite UNC Management Console DeleteReportLayout SQL Injection Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-132 April 13, 2011 -- CVE ID: CVE-2011-1653 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: CA -- Affected Products: CA Total...

10CVSS0.6AI score0.88655EPSS

Exploits12

Zero Day Initiative•added 2011/04/13 12:0 a.m.•24 views

CA Total Defense Suite UnassignFunctionalUsers Stored Procedure SQL Injection Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of CA Total Defense Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UnAssignFunctionalRoles stored procedure, accessed via the management.asmx...

10CVSS3.1AI score0.88655EPSS

Exploits12References1

CVE•added 1976/01/01 12:0 a.m.•5 views

CVE-2025-34443

This CVE entry is rejected/not used per the initial description.

6.6AI score

Exploits0

Cvelist•added 1976/01/01 12:0 a.m.•17 views

CVE-2025-34443

...

Exploits0

Rows per page