Lucene search
K

34 matches found

NVD
NVD
added 2025/10/13 8:15 a.m.9 views

CVE-2025-10556

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00184EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-16503

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00266EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-47486

Malicious code in bioql PyPI...

7.7CVSS6.6AI score0.00226EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47484

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-6577

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00228EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6579

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00228EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6574

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00294EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47487

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00253EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.49 views

CVE-2025-0602

The CVE-2025-0602 entry describes a stored Cross-site Scripting (XSS) vulnerability in the Compare feature of Dassault Systèmes’ Collaborative Industry Innovator (3DEXPERIENCE) from releases R2023x through R2025x. The flaw allows an attacker to inject and execute arbitrary script code in a user’s...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.14 views

CVE-2025-4985 Stored Cross-site Scripting (XSS) vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.51 views

CVE-2025-4985

CVE-2025-4985 affects Dassault Systèmes Project Portfolio Manager (Risk Management) across 3DEXPERIENCE R2022x–R2025x, with a stored XSS vulnerability that allows script execution in a user’s browser. The root cause is stored XSS within Risk Management, enabling arbitrary script execution per the...

8.7CVSS7.8AI score0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.42 views

CVE-2025-4986

CVE-2025-4986 is a stored XSS vulnerability in Dassault Systèmes’ 3DEXPERIENCE Product Manager, specifically the Model Definition feature, affecting releases from R2022x to R2025x. The captured details indicate that an attacker can execute arbitrary script in a user’s browser session via this sto...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:19 p.m.3 views

CVE-2025-4986 Stored Cross-site Scripting (XSS) vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:19 p.m.23 views

CVE-2025-4989 Stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/30 2:19 p.m.4 views

CVE-2025-4989 Stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:19 p.m.43 views

CVE-2025-4989

CVE-2025-4989 is a stored XSS vulnerability affecting Dassault Systèmes Product Manager (Requirements in 3DEXPERIENCE R2022x–R2025x). The available connected sources confirm a stored XSS flaw in Product Manager’s Requirements that could cause arbitrary script execution in a user’s browser session...

8.7CVSS6.1AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.10 views

CVE-2023-5598

Stored Cross-site Scripting XSS vulnerabilities affecting 3DSwym in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2023x allow an attacker to execute arbitrary script code...

5.4CVSS6.5AI score0.00388EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.7 views

CVE-2023-5597

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code...

5.4CVSS6.1AI score0.00252EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/19 2:22 p.m.6 views

CVE-2025-0828

A stored Cross-site Scripting XSS vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/19 2:20 p.m.6 views

CVE-2025-0827

A stored Cross-site Scripting XSS vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00294EPSS
Exploits0References1
Rows per page
Query Builder