CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/23 4:41 a.m.•4 views

CVE-2023-48320

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22...

5.9CVSS6.5AI score0.00165EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:28 a.m.•5 views

CVE-2022-48320

Cross-site Request Forgery CSRF in Tribe29's Checkmk = 2.1.0p17, Checkmk = 2.0.0p31, and all versions of Checkmk 1.6.0 EOL allow an attacker to add new visual elements to multiple pages...

5.4CVSS7AI score0.00195EPSS

Exploits0

Circl•added 2023/12/21 11:37 a.m.•1 views

CVE-2023-48320

creationtimestamp| type| source ---|---|--- 2023-12-21 11:37:03+00:00| seen| https://t.me/ctinow/157620...

5.9CVSS6.5AI score0.00165EPSS

Exploits0References1

Cvelist•added 2023/11/30 4:32 p.m.•12 views

CVE-2023-48320 WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS)

5.9CVSS5.9AI score0.00165EPSS

Exploits0References1

CVE•added 2023/11/30 4:32 p.m.•74 views

CVE-2023-48320

CVE-2023-48320 (SpiderVPlayer) is a Stored XSS in WebDorado SpiderVPlayer up to version 1.5.22 due to improper input neutralization during web page generation. Exploitation requires administrator privileges; impact is stored scripts in pages viewed by users. remediation: upgrade to a version late...

5.9CVSS6.5AI score0.00165EPSS

Exploits0References1Affected Software1

Patchstack•added 2023/11/23 12:0 a.m.•8 views

WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS)

Software Video Player Type Plugin Vulnerable versions = 1.5.22 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-48320 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 90d3d469b500 Credits SeungYongLee Required privilege...

5.9CVSS6.9AI score0.00165EPSS

Exploits0References1Affected Software1

OSV•added 2023/02/20 5:15 p.m.•17 views

CVE-2022-48320

Cross-site Request Forgery CSRF in Tribe29's Checkmk = 2.1.0p17, Checkmk = 2.0.0p31, and all versions of Checkmk 1.6.0 EOL allow an attacker to add new visual elements to multiple pages...

4.3CVSS4.8AI score

Exploits0References1

NVD•added 2023/02/20 5:15 p.m.•7 views

CVE-2022-48320

Cross-site Request Forgery CSRF in Tribe29's Checkmk = 2.1.0p17, Checkmk = 2.0.0p31, and all versions of Checkmk 1.6.0 EOL allow an attacker to add new visual elements to multiple pages...

5.4CVSS5.5AI score0.00195EPSS

Exploits0References1

Cvelist•added 2023/02/20 4:56 p.m.•18 views

CVE-2022-48320 CSRF in add-visual endpoint

Cross-site Request Forgery CSRF in Tribe29's Checkmk = 2.1.0p17, Checkmk = 2.0.0p31, and all versions of Checkmk 1.6.0 EOL allow an attacker to add new visual elements to multiple pages...

5.4CVSS5.8AI score0.00195EPSS

Exploits0References1

CVE•added 2023/02/20 4:56 p.m.•46 views

CVE-2022-48320

CVE-2022-48320 describes a Cross-site Request Forgery (CSRF) in Tribe29’s Checkmk affecting versions <= 2.1.0p17,

5.4CVSS4.9AI score0.00195EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/02/20 4:56 p.m.•5 views

CVE-2022-48320 CSRF in add-visual endpoint

Cross-site Request Forgery CSRF in Tribe29's Checkmk = 2.1.0p17, Checkmk = 2.0.0p31, and all versions of Checkmk 1.6.0 EOL allow an attacker to add new visual elements to multiple pages...

5.4CVSS7AI score0.00195EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by