CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Circl•added 2023/09/13 4:23 p.m.•5 views

CVE-2023-36551

creationtimestamp| type| source ---|---|--- 2023-09-13 16:23:41+00:00| seen| https://t.me/cibsecurity/70375...

5.3CVSS5.5AI score0.00558EPSS

Exploits0References1

CVE•added 2023/09/13 12:29 p.m.•48 views

CVE-2023-36551

Fortinet FortiSIEM versions 6.7.0–6.7.5 are affected by a sensitive information disclosure vulnerability. The issue stems from an exposure to an unauthorized actor via a crafted HTTP request, enabling information leakage from the system. Connected sources confirm Fortinet FortiSIEM versions 6.7.0...

5.3CVSS4.9AI score0.00558EPSS

Exploits0References1Affected Software1

0day.today•added 2023/03/28 12:0 a.m.•281 views

Label Studio 1.5.0 - Authenticated Server Side Request Forgery Vulnerability

Exploit Title: Label Studio 1.5.0 - Authenticated Server Side Request Forgery SSRF Google Dork: intitle:"Label Studio" intext:"Sign Up" intext:"Welcome to Label Studio Community Edition" Date: 2022-10-03 Exploit Author: @DeveloperNinja, email protected Vendor Homepage:...

6.5CVSS6.5AI score0.05088EPSS

Exploits3

Exploit DB•added 2023/03/28 12:0 a.m.•180 views

Label Studio 1.5.0 - Authenticated Server Side Request Forgery (SSRF)

6.5CVSS6.5AI score0.05088EPSS

Exploits3

Circl•added 2022/11/10 10:53 p.m.•4 views

CVE-2022-36551

creationtimestamp| type| source ---|---|--- 2022-11-10 22:53:30+00:00| seen| https://t.me/cibsecurity/50824...

6.5CVSS6.2AI score0.05088EPSS

Exploits3References1

OSV•added 2022/10/03 12:15 p.m.•15 views

CVE-2022-36551

A Server Side Request Forgery SSRF in the Data Import module in Heartex - Label Studio Community Edition versions 1.5.0 and earlier allows an authenticated user to access arbitrary files on the system. Furthermore, self-registration is enabled by default in these versions of Label Studio enabling...

6.5CVSS6.5AI score

Exploits0References4

CVE•added 2022/10/03 12:0 a.m.•75 views

CVE-2022-36551

CVE-2022-36551 describes a Server-Side Request Forgery (SSRF) in the Data Import module of Heartex Label Studio Community Edition versions

6.5CVSS6.3AI score0.05088EPSS

Exploits3References4Affected Software1

Circl•added 2022/07/15 4:35 p.m.•6 views

CVE-2020-36551

creationtimestamp| type| source ---|---|--- 2022-07-15 16:35:14+00:00| seen| https://t.me/cibsecurity/46298...

5.4CVSS5.5AI score0.0083EPSS

Exploits1References1

OSV•added 2022/07/15 12:15 p.m.•1 views

CVE-2020-36551

Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php...

5.4CVSS5.8AI score0.0083EPSS

Exploits1References4

CVE•added 2022/07/15 11:25 a.m.•48 views

CVE-2020-36551

CVE-2020-36551 is an XSS vulnerability in SourceCodester Multi Restaurant Table Reservation System 1.0, exploitable via the Item Name field in /dashboard/menu-list.php. The available records identify the vulnerable component and entry point but do not provide exploit details, impacted versions be...

5.4CVSS5.2AI score0.0083EPSS

Exploits1References4Affected Software1

Circl•added 2021/10/29 12:18 a.m.•5 views

CVE-2021-36551

creationtimestamp| type| source ---|---|--- 2021-10-29 00:18:36+00:00| seen| https://t.me/cibsecurity/31435...

5.4CVSS5.5AI score0.00487EPSS

Exploits1References1

Cvelist•added 2021/10/28 7:11 p.m.•15 views

CVE-2021-36551

TikiWiki v21.4 was discovered to contain a cross-site scripting XSS vulnerability in the component tiki-calendar.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload under the Add Event module...

5.5AI score0.00487EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by