CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2049 matches found

RedhatCVE•added 2025/03/19 2:20 p.m.•5 views

CVE-2025-0827

A stored Cross-site Scripting XSS vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00294EPSS

Exploits0References1

Mageia•added 2025/03/18 12:4 a.m.•19 views

Updated libreoffice packages fix security vulnerability

Macro URL arbitrary script execution. CVE-2025-1080...

7.8CVSS7.2AI score0.00291EPSS

Exploits0References3

OpenVAS•added 2025/03/18 12:0 a.m.•10 views

Mageia: Security Advisory (MGASA-2025-0103)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.7AI score0.00291EPSS

Exploits0References5

NVD•added 2025/03/17 2:15 p.m.•8 views

CVE-2025-0596

A stored Cross-site Scripting XSS vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00228EPSS

Exploits0References1

OSV•added 2025/03/17 2:15 p.m.•3 views

CVE-2025-0601

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.00228EPSS

Exploits0References1

CVE•added 2025/03/17 1:50 p.m.•54 views

CVE-2025-0833

The CVE-2025-0833 entry describes a stored Cross-site Scripting (XSS) vulnerability in Route Management for ENOVIA Collaborative Industry Innovator, affecting 3DEXPERIENCE R2023x through R2024x. The underlying issue is stored XSS that allows an attacker to execute arbitrary script in a user’s bro...

8.7CVSS6.1AI score0.00228EPSS

Exploits0References1Affected Software1

CVE•added 2025/03/17 1:50 p.m.•50 views

CVE-2025-0829

CVE-2025-0829 : Stored XSS in ENOVIA Collaborative Industry Innovator (3D Markup) affecting 3DEXPERIENCE R2022x through R2024x. Underlying cause: stored cross-site scripting allowing arbitrary script execution in a user’s browser. Connected documents provide no patch/remediation details or exploi...

8.7CVSS6.1AI score0.00228EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/03/17 1:49 p.m.•5 views

CVE-2025-0827 Stored Cross-site Scripting (XSS) vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

8.7CVSS7.8AI score0.00294EPSS

Exploits0References1

CVE•added 2025/03/17 1:49 p.m.•44 views

CVE-2025-0827

CVE-2025-0827 describes a stored XSS in Dassault Systèmes 3DSwymer’s 3DPlay component, affecting 3DEXPERIENCE R2022x–R2024x. The vulnerability allows an attacker to execute arbitrary script in a user’s browser session. Root cause is stored XSS in 3DSwymer/3DPlay, with CVSSv3.1 base score 8.7 (HIG...

8.7CVSS6.1AI score0.00294EPSS

Exploits0References1

CVE•added 2025/03/17 1:47 p.m.•48 views

CVE-2025-0596

CVE-2025-0596 is a stored Cross-site Scripting (XSS) vulnerability in Dassault Systèmes’ ENOVIA Collaborative Industry Innovator (Bookmark Editor) on Release 3DEXPERIENCE R2024x. The issue allows an attacker to inject and execute arbitrary script code in a user’s browser session. Affected compone...

8.7CVSS6.1AI score0.00228EPSS

Exploits0References1Affected Software1

RedHat Linux•added 2025/03/17 2:12 a.m.•12 views

Important: Red Hat Security Advisory: libreoffice security update

An update for libreoffice is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.8CVSS7.6AI score0.00291EPSS

Exploits0References2

Cvelist•added 2025/03/17 12:0 a.m.•9 views

CVE-2025-25612

FS Inc S3150-8T2F prior to version S3150-8T2F2.2.0D135103 is vulnerable to Cross Site Scripting XSS in the Time Range Configuration functionality of the administration interface. An attacker can inject malicious JavaScript into the "Time Range Name" field, which is improperly sanitized. When this...

0.00872EPSS

Exploits0References2

Vulnrichment•added 2025/03/17 12:0 a.m.•8 views

CVE-2025-26127

A stored cross-site scripting XSS vulnerability in the Send for Approval function of FileCloud v23.241.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5AI score0.00213EPSS

Exploits0References2

CNNVD•added 2025/03/17 12:0 a.m.•1 views

FS S3150-8T2F 跨站脚本漏洞

FS S3150-8T2F is a switch from FS. A cross-site scripting vulnerability exists in versions prior to FS S3150-8T2F S3150-8T2F2.2.0D135103, which originates from cross-site scripting and could lead to arbitrary script execution...

7.1CVSS6.2AI score0.00872EPSS

Exploits0References4

CNNVD•added 2025/03/17 12:0 a.m.•3 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

Dassault Systèmes ENOVIA Collaborative Industry Innovator is an essential toolset for real-time, secure and structured collaboration and product content management for an engineering team at Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Collaborative Indust...

8.7CVSS5.9AI score0.00228EPSS

Exploits0References2

CNNVD•added 2025/03/17 12:0 a.m.•3 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

8.7CVSS5.9AI score0.00228EPSS

Exploits0References2

CNNVD•added 2025/03/17 12:0 a.m.•2 views

FileCloud 安全漏洞

FileCloud is an ultra-secure content collaboration platform from US-based FileCloud, Inc. offering industry-leading compliance, data governance, data leakage protection, data retention and digital rights management capabilities. A security vulnerability exists in FileCloud version v23.241.2, whic...

5CVSS5.8AI score0.00213EPSS

Exploits0References3

AlmaLinux•added 2025/03/17 12:0 a.m.•7 views

Important: libreoffice security update

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and...

7.8CVSS7.4AI score0.00291EPSS

Exploits0References4

RedhatCVE•added 2025/03/15 4:38 a.m.•11 views

CVE-2025-25925

A stored cross-scripting XSS vulnerability in Openmrs v2.4.3 Build 0ff0ed allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the personName.middleName parameter at /openmrs/admin/patients/shortPatientForm.form...

4.8CVSS6.3AI score0.0032EPSS

Exploits1References1

NVD•added 2025/03/13 9:15 p.m.•9 views

CVE-2024-55060

A cross-site scripting XSS vulnerability in the component index.php of Rafed CMS Website v1.44 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS0.00515EPSS

Exploits2References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by