CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/01 6:24 p.m.•1 views

ECHO-C55E-EF7D-8505

Bulletin has no description...

5.5CVSS5.7AI score0.00027EPSS

RedhatCVE•added 2025/08/05 8:32 a.m.•4 views

CVE-2025-8505

A vulnerability has been found in 495300897 wx-shop up to de1b66331368695779cfc6e4d11a64caddf8716e and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to...

5.3CVSS7.1AI score0.00082EPSS

NVD•added 2025/08/03 8:15 a.m.•4 views

CVE-2025-8505

5.3CVSS0.00082EPSS

Exploits0References4

Vulnrichment•added 2025/08/03 8:2 a.m.•3 views

CVE-2025-8505 495300897 wx-shop cross-site request forgery

5.3CVSS4.5AI score0.00082EPSS

Exploits0References4

Cvelist•added 2025/08/03 8:2 a.m.•9 views

CVE-2025-8505 495300897 wx-shop cross-site request forgery

5.3CVSS0.00082EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 3:42 p.m.•2 views

CVE-2020-8505

School Management Software PHP/mySQL through 2019-03-14 allows officeadmin/?action=deleteadmin CSRF to delete a user...

6.5CVSS6.9AI score0.00386EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 8:54 a.m.•4 views

CVE-2019-8505

A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting...

6.1CVSS5.4AI score0.00231EPSS

Circl•added 2024/10/02 1:1 p.m.•0 views

CVE-2024-8505

creationtimestamp| type| source ---|---|--- 2024-10-02 13:01:01+00:00| seen| https://t.me/cvedetector/6822...

6.4CVSS4.8AI score0.00278EPSS

Patchstack•added 2024/10/02 12:0 a.m.•14 views

WordPress Ajax Load More Plugin <= 7.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Ajax Load More Type Plugin Vulnerable versions = 7.1.2 Fixed in 7.1.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8505 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 333f5ab48634 Credits Robert DeVore Required...

6.4CVSS5.8AI score0.00278EPSS

Exploits0References3Affected Software1

Openbugbounty•added 2020/03/24 12:56 p.m.•8 views

klong.com Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8505 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting klong.com website and its users. Following coordinated and...

0.2AI score

Openbugbounty•added 2020/03/01 9:18 p.m.•7 views

api.tokyolife.vn Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8505 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting api.tokyolife.vn website and its users. Following...

Openbugbounty•added 2020/02/21 5:40 p.m.•5 views

manymanyimages.com Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8505 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting manymanyimages.com website and its users. Following...

Openbugbounty•added 2020/02/13 4:30 p.m.•10 views

yurist-golov.in.ua Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8505 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting yurist-golov.in.ua website and its users. Following...

Exploit DB•added 2020/02/03 12:0 a.m.•251 views

School ERP System 1.0 - Cross Site Request Forgery (Add Admin)

Title: School ERP System 1.0 - Cross Site Request Forgery Add Admin Date: 2020-01-31 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/school-erp-ultimate/files/ Software Link: https://sourceforge.net/projects/school-erp-ultimate/files/ Version ERP-Ultimate CVE:...

6.5CVSS6.5AI score0.00386EPSS

Exploits4

exploitpack•added 2020/02/03 12:0 a.m.•43 views

School ERP System 1.0 - Cross Site Request Forgery (Add Admin)

School ERP System 1.0 - Cross Site Request Forgery Add Admin Title: School ERP System 1.0 - Cross Site Request Forgery Add Admin Date: 2020-01-31 Exploit Author: J3rryBl4nks Vendor Homepage: https://sourceforge.net/projects/school-erp-ultimate/files/ Software Link:...

4.3CVSS0.3AI score0.00386EPSS

Exploits4

NVD•added 2020/01/31 10:15 p.m.•4 views

CVE-2020-8505

School Management Software PHP/mySQL through 2019-03-14 allows officeadmin/?action=deleteadmin CSRF to delete a user...

6.5CVSS6.5AI score0.00386EPSS

Exploits3References1

CVE•added 2020/01/31 9:27 p.m.•160 views

CVE-2020-8505

CVE-2020-8505 affects School Management Software PHP/MySQL (through 2019-03-14). The vulnerability is a Cross-Site Request Forgery that can trigger office_admin/?action=deleteadmin to delete a user. Documented in NVD with CVSS v2 base 4.3 (Partial integrity impact) and CVSS v3.1 base 6.5 (Partial...

6.5CVSS6.4AI score0.00386EPSS

Exploits3References1Affected Software1

Openbugbounty•added 2019/12/22 4:40 p.m.•9 views

kreslashop.ru Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8505 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting kreslashop.ru website and its users. Following coordinated...