Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7610 matches found

Tenable Nessus
Tenable Nessusadded 2024/02/08 12:0 a.m.20 views

CentOS 8 : libreoffice (CESA-2023:0089)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:0089 advisory. - libreoffice: Execution of Untrusted Macros Due to Improper Certificate Validation CVE-2022-26305 - libreoffice: Static Initialization Vector Allows t...

8.8CVSS7.5AI score0.01322EPSS
Exploits0References5
NVD
NVDadded 2024/02/01 8:50 p.m.9 views

CVE-2024-24945

A stored cross-site scripting XSS vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Share Your Moments parameter at /travel-journal/write-journal.php...

6.1CVSS6AI score0.00278EPSS
Exploits1References2
OSV
OSVadded 2024/02/01 4:15 a.m.4 views

CVE-2024-23941

Cross-site scripting vulnerability exists in Group Office prior to v6.6.182, prior to v6.7.64 and prior to v6.8.31, which may allow a remote authenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product...

5.4CVSS6.4AI score
Exploits0References3
Prion
Prionadded 2024/02/01 4:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability exists in Group Office prior to v6.6.182, prior to v6.7.64 and prior to v6.8.31, which may allow a remote authenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product...

4.9CVSS6.7AI score0.00202EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/02/01 12:0 a.m.4 views

CVE-2024-24041

A stored cross-site scripting XSS vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the location parameter at /travel-journal/write-journal.php...

5.9AI score0.00212EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/01/29 12:0 a.m.1 views

CVE-2024-22570

A stored cross-site scripting XSS vulnerability in /install.php?m=install&c=index&a=step3 of GreenCMS v2.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5.7AI score0.00078EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/01/29 12:0 a.m.1 views

GreenCMS Cross-Site Scripting Vulnerability

GreenCMS is a content management system CMS developed on ThinkPHP. A cross-site scripting vulnerability exists in GreenCMS v2.3, which originated from a vulnerability that allows attackers to execute arbitrary web script or HTML via a specially crafted payload...

5.4CVSS6AI score0.00078EPSS
Exploits0References2
OSV
OSVadded 2024/01/28 11:15 p.m.2 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

5.4CVSS6.5AI score0.00383EPSS
Exploits0References2
Prion
Prionadded 2024/01/28 11:15 p.m.14 views

Cross site scripting

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

4.9CVSS6.9AI score0.00383EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/01/28 11:9 p.m.18 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

6.5AI score0.00383EPSS
Exploits0References2
Prion
Prionadded 2024/01/26 6:15 p.m.19 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly valida...

4.3CVSS6.2AI score0.00078EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/01/26 5:26 p.m.13 views

CVE-2024-20305

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly valida...

4.8CVSS5.2AI score0.00078EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/01/25 12:0 a.m.2 views

Webmin 安全漏洞

Webmin is the Webmin community's set of Web-based system administration tools for Unix-like operating systems. A cross-site scripting vulnerability exists in Webmin v.2.105 and earlier versions, which stems from the application's lack of effective filtering and escaping of user-supplied data, and...

4.8CVSS6.1AI score0.00055EPSS
Exploits1References3
NVD
NVDadded 2024/01/23 10:15 a.m.12 views

CVE-2024-23183

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

5.4CVSS5.4AI score0.00283EPSS
Exploits0References2
NVD
NVDadded 2024/01/23 10:15 a.m.8 views

CVE-2024-23181

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

6.1CVSS6.3AI score0.00584EPSS
Exploits0References2
Prion
Prionadded 2024/01/23 10:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

5.8CVSS7.2AI score0.00584EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/01/23 9:39 a.m.14 views

CVE-2024-23183

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

6.3AI score0.00283EPSS
Exploits0References2
CVE
CVEadded 2024/01/23 9:38 a.m.45 views

CVE-2024-23181

CVE-2024-23181 concerns a-blog cms. The Red Hat, NVD, and JVN-enriched records identify a cross-site scripting vulnerability in a-blog cms versions: 3.1.x before 3.1.7, 3.0.x before 3.0.29, 2.11.x before 2.11.58, 2.10.x before 2.10.50, and 2.9.0 and earlier. The issue allows a remote unauthentica...

6.1CVSS6.8AI score0.00584EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/23 9:38 a.m.1 views

CVE-2024-23181

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

6.6AI score0.00584EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/01/23 9:38 a.m.17 views

CVE-2024-23181

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

7.1AI score0.00584EPSS
Exploits0References2
Rows per page
Query Builder