Lucene search
K

20 matches found

CVE
CVE
added 2026/03/31 8:38 a.m.18 views

CVE-2025-10551

ENOVIA Collaborative Industry Innovator – Document Management (3DEXPERIENCE) is affected by CVE-2025-10551 in releases R2023x through R2025x. It is a Stored XSS vulnerability that could allow an attacker to execute arbitrary script in a user’s browser session. CVSSv3.1 base score 8.7 (High): AV:N...

8.7CVSS6.2AI score0.00166EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/11/24 3:31 p.m.13 views

CVE-2025-10554

Summary: CVE-2025-10554 affects Dassault Systèmes ENOVIA Product Manager (3DEXPERIENCE) in the Requirements area from R2023x to R2025x. It is a stored XSS vulnerability that allows an attacker to execute arbitrary script code in a user’s browser session. The provided documents do not specify the ...

8.7CVSS6.1AI score0.0016EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/16 7:22 a.m.3 views

CVE-2025-4987 Stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.0035EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/01 2:47 p.m.5 views

CVE-2025-4992

A stored Cross-site Scripting XSS vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
NVD
NVD
added 2025/05/30 3:15 p.m.7 views

CVE-2025-4991

A stored Cross-site Scripting XSS vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
NVD
NVD
added 2025/05/30 3:15 p.m.11 views

CVE-2025-4989

A stored Cross-site Scripting XSS vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
NVD
NVD
added 2025/05/30 3:15 p.m.8 views

CVE-2025-4990

A stored Cross-site Scripting XSS vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:19 p.m.4 views

CVE-2025-0602 Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.18 views

CVE-2025-0602 Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.18 views

CVE-2025-4983 Stored Cross-site Scripting (XSS) vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.48 views

CVE-2025-4983

CVE-2025-4983 is a stored Cross-site Scripting (XSS) vulnerability affecting City Referential Manager on Release 3DEXPERIENCE R2025x. The issue concerns the City Referential component, with the underlying impact being arbitrary script execution in a user’s browser session. The provided metrics in...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:19 p.m.3 views

CVE-2025-4983 Stored Cross-site Scripting (XSS) vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.43 views

CVE-2025-4984

CVE-2025-4984 describes a stored XSS vulnerability in City Discover within City Referential Manager on Release 3DEXPERIENCE R2025x. The issue affects City Discover/City Referential Manager components and could allow an attacker to execute arbitrary script code in a user’s browser session. The lin...

8.7CVSS6.1AI score0.00266EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.15 views

CVE-2025-4986 Stored Cross-site Scripting (XSS) vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:16 p.m.4 views

CVE-2025-4990 Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS7.8AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:16 p.m.18 views

CVE-2025-4991 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:15 p.m.11 views

CVE-2025-4992 Stored Cross-site Scripting (XSS) vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:15 p.m.42 views

CVE-2025-4992

CVE-2025-4992 is a stored XSS vulnerability in Service Items Management of Dassault Systèmes’ Service Process Engineer (3DEXPERIENCE R2024x through R2025x). The issue allows an attacker to execute arbitrary script code in an authenticated user’s browser session via the affected component/file, wi...

8.7CVSS7.9AI score0.00266EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.3 views

PT-2025-23303 · Ds Systemes · Change Governance In Product Manager

Name of the Vulnerable Software and Affected Versions: Change Governance in Product Manager versions 3DEXPERIENCE R2022x through 3DEXPERIENCE R2025x Description: A stored Cross-site Scripting XSS issue allows an attacker to execute arbitrary script code in a user's browser session. This affects...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/30 12:0 a.m.5 views

PT-2025-23298

Name of the Vulnerable Software and Affected Versions City Referential Manager versions 3DEXPERIENCE R2025x Description A stored Cross-site Scripting XSS issue affects City Discover within City Referential Manager. Exploitation allows an attacker to execute arbitrary script code within a user's...

8.7CVSS6.3AI score0.00266EPSS
Exploits1References7
Rows per page
Query Builder