Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

264 matches found

RedhatCVE
RedhatCVEadded 2026/06/05 7:58 p.m.11 views

CVE-2023-42343

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

6.1CVSS5.4AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/05/11 8:27 p.m.9 views

CVE-2023-42346

Alkacon OpenCms before 16 allows XXE when the refers to an external host...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References1
OSV
OSVadded 2026/05/08 6:32 a.m.8 views

GHSA-8GPV-C454-3HFC Alkacon OpenCms is vulnerable to XSS via cmis-online/type

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

6.1CVSS5.8AI score0.0059EPSS
Exploits0References3
EUVD
EUVDadded 2026/05/08 6:32 a.m.9 views

EUVD-2023-46796

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

6.1CVSS5.8AI score0.0059EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/05/08 6:32 a.m.14 views

Alkacon OpenCms allows remote unauthenticated attackers to obtain sensitive information

Alkacon OpenCms before 10.5.1 allows remote unauthenticated attackers to obtain sensitive information via a cmis-online/query XXE attack on a Chemistry servlet...

7.3CVSS5.8AI score0.02231EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blogadded 2026/05/08 6:32 a.m.13 views

Alkacon OpenCms is vulnerable to XXE when the <!DOCTYPE> refers to an external host

Alkacon OpenCms before 16 allows XXE when the refers to an external host...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/05/08 6:32 a.m.7 views

GHSA-PJ6P-9P8X-5MFC Alkacon OpenCms is vulnerable to XXE when the <!DOCTYPE> refers to an external host

Alkacon OpenCms before 16 allows XXE when the refers to an external host...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2026/05/08 6:32 a.m.17 views

Alkacon OpenCms is vulnerable to XSS via updateModelGroups.jsp

A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp...

6.1CVSS5.8AI score0.00149EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2026/05/08 5:16 a.m.13 views

CVE-2023-42343

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

6.1CVSS0.0059EPSS
Exploits0References1
NVD
NVDadded 2026/05/08 5:16 a.m.12 views

CVE-2023-42345

A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp...

6.1CVSS0.00149EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/08 12:0 a.m.33 views

CVE-2023-42343

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

0.0059EPSS
Exploits0References1
CVE
CVEadded 2026/05/08 12:0 a.m.9 views

CVE-2023-42345

Affected product: Alkacon OpenCms before 16. Vulnerability: Cross Site Scripting via updateModelGroups.jsp. Root cause not detailed in the provided documents. Impact aligned with CVSS: 6.1 (Medium) with user interaction required. Exploitation status not provided in the sources. No remediation/pat...

6.1CVSS5.8AI score0.00149EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/08 12:0 a.m.10 views

EUVD-2023-46798

A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp...

6.1CVSS5.8AI score0.00149EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/08 12:0 a.m.8 views

Alkacon OpenCMS 跨站脚本漏洞

Alkacon OpenCMS is a content management system developed by Alkacon Corporation. Versions of Alkacon OpenCMS prior to 10.5.1 had a cross-site scripting vulnerability, which was caused by the cmis-online/type module being vulnerable to cross-site scripting attacks...

6.1CVSS5.6AI score0.0059EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/08 12:0 a.m.8 views

Alkacon OpenCMS 跨站脚本漏洞

Alkacon OpenCMS is a content management system developed by Alkacon Corporation. Versions of Alkacon OpenCMS prior to version 16 contained a cross-site scripting vulnerability, which was caused by the updateModelGroups.jsp file allowing for cross-site scripting attacks...

6.1CVSS5.6AI score0.00149EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/08 12:0 a.m.32 views

CVE-2023-42345

A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp...

0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/08 12:0 a.m.8 views

CVE-2023-42345

A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp...

5.8AI score0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/08 12:0 a.m.7 views

CVE-2023-42346

Alkacon OpenCms before 16 allows XXE when the refers to an external host...

5.8AI score0.00232EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/08 12:0 a.m.6 views

CVE-2023-42343

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

5.8AI score0.0059EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/08 12:0 a.m.6 views

CVE-2023-42343

A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type...

5.8AI score0.0059EPSS
Exploits0References2
Rows per page
Query Builder