CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7610 matches found

OSV•added 2023/05/23 2:15 a.m.•13 views

CVE-2023-27923

Cross-site scripting vulnerability in Tag edit function of VK Blocks 1.53.0.1 and earlier and VK Blocks Pro 1.53.0.1 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4CVSS6.5AI score

Exploits0References2

NVD•added 2023/05/23 2:15 a.m.•8 views

CVE-2023-22654

Client-side enforcement of server-side security issue exists in T&D Corporation and ESPEC MIC CORP. data logger products, which may lead to an arbitrary script execution on a logged-in user's web browser. Affected products and versions are as follows: T&D Corporation data logger products TR-71W/7...

5.4CVSS5.7AI score0.01063EPSS

Exploits0References3

NVD•added 2023/05/23 2:15 a.m.•11 views

CVE-2023-27925

Cross-site scripting vulnerability in Post function of VK Blocks 1.53.0.1 and earlier and VK Blocks Pro 1.53.0.1 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4CVSS5.2AI score0.00677EPSS

Exploits0References2

Prion•added 2023/05/23 2:15 a.m.•19 views

Cross site scripting

4.9CVSS5.2AI score0.00466EPSS

Exploits0References2Affected Software1

Prion•added 2023/05/23 2:15 a.m.•12 views

Design/Logic Flaw

4.9CVSS6.6AI score0.01063EPSS

Exploits0References3

Prion•added 2023/05/23 2:15 a.m.•23 views

Cross site scripting

Cross-site scripting vulnerability in CTA post function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script...

4.9CVSS5.2AI score0.00466EPSS

Exploits0References2Affected Software1

Prion•added 2023/05/23 2:15 a.m.•16 views

Cross site scripting

Cross-site scripting vulnerability in Profile setting function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script...

4.9CVSS5.2AI score0.00547EPSS

Exploits0References2Affected Software1

Prion•added 2023/05/23 1:15 a.m.•13 views

Cross site scripting

A reflected cross-site scripting XSS vulnerability in /authenticationendpoint/login.do of WSO2 API Manager before 4.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tenantDomain parameter...

5.8CVSS5.9AI score0.26833EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/05/23 12:0 a.m.•20 views

CVE-2023-28367

Cross-site scripting vulnerability in CTA post function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4AI score0.00466EPSS

Exploits0References2

CVE•added 2023/05/23 12:0 a.m.•63 views

CVE-2023-22654

CVE-2023-22654 affects T&D Corporation and ESPEC MIC CORP. data loggers: TR-71W/72W, RTR-5W, WDR-7, WDR-3, WS-2; RT-12N/RS-12N, RT-22BN, TEU-12N. Issue: client-side enforcement of server-side security may allow arbitrary script execution in a logged-in user’s browser. Impact details are limited t...

5.4CVSS5.7AI score0.01063EPSS

Exploits0References3Affected Software1

Cvelist•added 2023/05/23 12:0 a.m.•13 views

CVE-2023-27923

5.4AI score0.00466EPSS

Exploits0References2

Cvelist•added 2023/05/23 12:0 a.m.•14 views

CVE-2023-27926

Cross-site scripting vulnerability in Profile setting function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4AI score0.00547EPSS

Exploits0References2

Cvelist•added 2023/05/23 12:0 a.m.•16 views

CVE-2023-27925

Cross-site scripting vulnerability in Post function of VK Blocks 1.53.0.1 and earlier and VK Blocks Pro 1.53.0.1 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4AI score0.00677EPSS

Exploits0References2

Cvelist•added 2023/05/23 12:0 a.m.•13 views

CVE-2023-27922

Cross-site scripting vulnerability in Newsletter versions prior to 7.6.9 allows a remote unauthenticated attacker to inject an arbitrary script...

6.3AI score0.03868EPSS

Exploits1References2

Cvelist•added 2023/05/23 12:0 a.m.•18 views

CVE-2023-22654

6.9AI score0.01063EPSS

Exploits0References3

Positive Technologies•added 2023/05/23 12:0 a.m.•2 views

PT-2023-18606 · T&D +1 · Tr-71W/72W +7

Name of the Vulnerable Software and Affected Versions: T&D Corporation data logger products TR-71W/72W all firmware versions, RTR-5W all firmware versions, WDR-7 all firmware versions, WDR-3 all firmware versions, and WS-2 all firmware versions ESPEC MIC CORP. data logger products RT-12N/RS-12N a...

5.4CVSS5.6AI score0.01063EPSS

Exploits0References7

Vulnrichment•added 2023/05/23 12:0 a.m.•6 views

CVE-2023-31664

5.9AI score0.26833EPSS

Exploits1References3

NVD•added 2023/05/19 5:15 p.m.•12 views

CVE-2023-1996

A reflected Cross-site Scripting XSS vulnerability in Release 3DEXPERIENCE R2018x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code...

6.1CVSS6.1AI score0.00542EPSS

Exploits0References1

Prion•added 2023/05/19 5:15 p.m.•23 views

Cross site scripting

A reflected Cross-site Scripting XSS vulnerability in Release 3DEXPERIENCE R2018x through Release 3DEXPERIENCE R2023x allows an attacker to execute arbitrary script code...

5.8CVSS6.1AI score0.00542EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/05/19 12:0 a.m.•3 views

Dassault Systèmes 3DEXPERIENCE 跨站脚本漏洞

Dassault Systèmes 3DEXPERIENCE is a business and innovation platform from Dassault Systèmes France. A cross-site scripting vulnerability exists in Dassault Systèmes 3DEXPERIENCE versions R2018x through R2023x, which originates from a vulnerability that allows an attacker to execute arbitrary scri...

6.1CVSS6.2AI score0.00542EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by