CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/11/11 12:41 a.m.•1 views

EUVD-2025-51501

Malicious code in tired-jade-tick npm...

6.6AI score

Exploits0

Vulnrichment•added 2025/08/01 12:0 a.m.•3 views

CVE-2025-51501

Reflected Cross-Site Scripting XSS in the id parameter of the liveedit.modulesettings API endpoint in Microweber CMS2.0 allows execution of arbitrary JavaScript...

6AI score0.00258EPSS

Exploits2References3

Cvelist•added 2025/08/01 12:0 a.m.•7 views

CVE-2025-51501

Reflected Cross-Site Scripting XSS in the id parameter of the liveedit.modulesettings API endpoint in Microweber CMS2.0 allows execution of arbitrary JavaScript...

0.00258EPSS

Exploits2References3

Circl•added 2024/11/05 1:19 a.m.•3 views

CVE-2024-51501

creationtimestamp| type| source ---|---|--- 2024-11-05 01:19:12+00:00| published-proof-of-concept| https://t.me/cvedetector/9800...

10CVSS4.8AI score0.00108EPSS

Exploits0References1

Cvelist•added 2024/11/04 10:56 p.m.•18 views

CVE-2024-51501 CRLF injection in Refit's [Header], [HeaderCollection] and [Authorize] attributes

Refit is an automatic type-safe REST library for .NET Core, Xamarin and .NET The various header-related Refit attributes Header, HeaderCollection and Authorize are vulnerable to CRLF injection. The way HTTP headers are added to a request is via the HttpHeaders.TryAddWithoutValidation method. This...

10CVSS0.00108EPSS

Exploits0References2

CVE•added 2024/11/04 10:56 p.m.•54 views

CVE-2024-51501

Refit (a .NET REST client) is vulnerable to CRLF injection via its header-related attributes (Header, HeaderCollection, Authorize). The underlying issue is lack of validation in HttpHeaders.TryAddWithoutValidation, which allows CRLF characters in header values, enabling header injection, request ...

10CVSS7.1AI score0.00108EPSS

Exploits0References2

Circl•added 2023/12/28 11:26 a.m.•1 views

CVE-2023-51501

creationtimestamp| type| source ---|---|--- 2023-12-28 11:26:40+00:00| seen| https://t.me/ctinow/160000 2024-01-20 10:11:12+00:00| seen| https://t.me/ctinow/170574...

7.1CVSS7.1AI score0.00083EPSS

Exploits0References2

NVD•added 2023/12/28 10:15 a.m.•8 views

CVE-2023-51501

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Undsgn Uncode - Creative & WooCommerce WordPress Theme allows Reflected XSS.This issue affects Uncode - Creative & WooCommerce WordPress Theme: from n/a through 2.8.6...

7.1CVSS0.00083EPSS

Exploits0References1

Cvelist•added 2023/12/28 9:56 a.m.•15 views

CVE-2023-51501 WordPress Uncode Core Plugin <= 2.8.6 is vulnerable to Cross Site Scripting (XSS)

7.1CVSS7.2AI score0.00083EPSS

Exploits0References1

CVE•added 2023/12/28 9:56 a.m.•68 views

CVE-2023-51501

CVE-2023-51501 affects Undsgn Uncode (WordPress theme) — Uncode Core

7.1CVSS7.1AI score0.00083EPSS

Exploits0References1Affected Software1

Patchstack•added 2023/12/21 12:0 a.m.•10 views

WordPress Uncode Core Plugin <= 2.8.6 is vulnerable to Cross Site Scripting (XSS)

Software Uncode Core Type Plugin Vulnerable versions = 2.8.6 Fixed in 2.8.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-51501 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 138ed2ed00c0 Credits Rafie Muhammad Patchstack Required...

7.1CVSS6.5AI score0.00083EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by