Lucene search
K

24 matches found

CVE
CVE
added 2026/03/31 8:38 a.m.18 views

CVE-2025-10551

ENOVIA Collaborative Industry Innovator – Document Management (3DEXPERIENCE) is affected by CVE-2025-10551 in releases R2023x through R2025x. It is a Stored XSS vulnerability that could allow an attacker to execute arbitrary script in a user’s browser session. CVSSv3.1 base score 8.7 (High): AV:N...

8.7CVSS6.2AI score0.00166EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/11/24 4:15 p.m.7 views

CVE-2025-10554

A stored Cross-site Scripting XSS vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.0016EPSS
Exploits0References1
CVE
CVE
added 2025/11/24 3:31 p.m.13 views

CVE-2025-10554

Summary: CVE-2025-10554 affects Dassault Systèmes ENOVIA Product Manager (3DEXPERIENCE) in the Requirements area from R2023x to R2025x. It is a stored XSS vulnerability that allows an attacker to execute arbitrary script code in a user’s browser session. The provided documents do not specify the ...

8.7CVSS6.1AI score0.0016EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-57891

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00388EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/16 7:22 a.m.3 views

CVE-2025-4987 Stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.0035EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:19 p.m.4 views

CVE-2025-0602 Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.18 views

CVE-2025-0602 Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
OSV
OSV
added 2025/03/17 2:15 p.m.3 views

CVE-2025-0598

A stored Cross-site Scripting XSS vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/17 1:50 p.m.11 views

CVE-2025-0833 Stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/17 1:48 p.m.5 views

CVE-2025-0598 Stored Cross-site Scripting (XSS) vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS7.8AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2024/09/02 12:15 p.m.40 views

CVE-2024-7938

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00295EPSS
Exploits0References1
CVE
CVE
added 2024/09/02 11:48 a.m.56 views

CVE-2024-7938

CVE-2024-7938 is a stored XSS in 3DSwymer’s 3DDashboard affecting 3DEXPERIENCE R2023x through R2024x. The vulnerability stems from insecure handling of input in the dashboard, enabling arbitrary script execution in a user’s browser session. The PT-2024-38703 advisory explicitly lists the affected...

8.7CVSS6.6AI score0.00295EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/02 11:48 a.m.12 views

CVE-2024-7938 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00295EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 4:54 p.m.15 views

CVE-2023-5597 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code...

5.4CVSS6.1AI score0.00252EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 4:54 p.m.54 views

CVE-2023-5597

CVE-2023-5597 is a stored cross-site scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer, constrained to 3DEXPERIENCE releases R2023x through R2024x. The issue arises in the 3DDashboard component, enabling arbitrary script execution when exploited. Public technical details in the conn...

5.4CVSS6.1AI score0.00252EPSS
Exploits0References1
NVD
NVD
added 2023/11/21 10:15 a.m.20 views

CVE-2023-5599

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code...

5.4CVSS0.00392EPSS
Exploits0References1
CVE
CVE
added 2023/11/21 9:29 a.m.38 views

CVE-2023-5598

CVE-2023-5598 affects Dassault Systèmes 3DSwymer via a Stored Cross-site Scripting (XSS) vulnerability in 3DSwym within 3DEXPERIENCE R2022x–R2023x. Affected component is the 3DSwymer/3DSwym frontend that handles user input, enabling an attacker to store and execute script code. Impact: arbitrary ...

5.4CVSS5.6AI score0.00388EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2023/11/21 9:28 a.m.52 views

CVE-2023-5599

CVE-2023-5599 describes a stored Cross-site Scripting (XSS) vulnerability affecting the 3DDashboard component in 3DSwymer within the 3DEXPERIENCE platform, covering releases from R2022x to R2023x . The issue allows an attacker to execute arbitrary script code. The available connected sources iden...

5.4CVSS5.4AI score0.00392EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/11/21 9:28 a.m.17 views

CVE-2023-5599 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code...

5.4CVSS6.1AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2023/08/28 4:15 p.m.25 views

CVE-2023-1997

An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution...

8.8CVSS9.1AI score0.01724EPSS
Exploits0References1
Rows per page
Query Builder