CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3641 matches found

OSV•added 2019/08/07 12:15 a.m.•1 views

CVE-2019-14731

An issue was discovered in ZenTao 11.5.1. There is an XSS stored vulnerability that leads to the capture of other people's cookies via the Rich Text Box...

5.4CVSS6AI score0.00591EPSS

Exploits1References1

NVD•added 2019/08/07 12:15 a.m.•21 views

CVE-2019-14731

An issue was discovered in ZenTao 11.5.1. There is an XSS stored vulnerability that leads to the capture of other people's cookies via the Rich Text Box...

5.4CVSS5.3AI score0.00591EPSS

Exploits1References1

Prion•added 2019/08/07 12:15 a.m.•13 views

Cross site scripting

An issue was discovered in ZenTao 11.5.1. There is an XSS stored vulnerability that leads to the capture of other people's cookies via the Rich Text Box...

3.5CVSS5.2AI score0.00591EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/08/06 11:36 p.m.•19 views

CVE-2019-14731

An issue was discovered in ZenTao 11.5.1. There is an XSS stored vulnerability that leads to the capture of other people's cookies via the Rich Text Box...

5.3AI score0.00591EPSS

Exploits1References1

CVE•added 2019/08/06 11:36 p.m.•64 views

CVE-2019-14731

CVE-2019-14731 affects ZenTao 11.5.1 with a stored XSS in the Rich Text Box that can lead to capture of other users’ cookies. Connected sources describe the issue as XSS (stored) in ZenTao 11.5.1 and note lack of input validation in the related web UI/WEB application as a contributing factor (e.g...

5.4CVSS5.2AI score0.00591EPSS

Exploits1References1Affected Software1

Hacker One•added 2019/08/06 5:16 p.m.•11 views

ForeScout Technologies: HTML Injection & Content Spoofing

Summary: The Main Search Box of the site "www.forescout.com" is Vulnerable for HTML Injection & Content Spoofing Steps To Reproduce: 1. Visit example link 2. in The Search Box enter HTML Code test 3. in the Result Page, the HTML code Will be render Impact 1. enter the Next Code In The Search Box...

0.2AI score

Exploits0

Malwarebytes•added 2019/08/02 3:0 p.m.•48 views

Everything you need to know about ATM attacks and fraud: part 2

This is the second and final installment of our two-part series on automated teller machine ATM attacks and fraud. In part 1, we identified the reasons why ATMs are vulnerable—from inherent weaknesses of its frame to its software—and delved deep into two of the four kinds of attacks against them:...

1.3AI score

Exploits0

OSV•added 2019/07/05 3:16 p.m.•17 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.8CVSS5.7AI score

Exploits0References1

NVD•added 2019/07/05 3:16 p.m.•14 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.8CVSS4.8AI score0.00622EPSS

Exploits1References1

Prion•added 2019/07/05 3:16 p.m.•14 views

Cross site scripting

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

3.5CVSS4.7AI score0.00622EPSS

Exploits1References1Affected Software1

Prion•added 2019/07/05 3:16 p.m.•22 views

Cross site scripting

In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, CVE-2018-20520, and CVE-2019-13186...

3.5CVSS5.2AI score0.00865EPSS

Exploits4References1Affected Software1

Cvelist•added 2019/07/05 2:5 p.m.•14 views

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

4.9AI score0.00622EPSS

Exploits1References1

Cvelist•added 2019/07/05 2:5 p.m.•29 views

CVE-2019-13340

5.2AI score0.00622EPSS

Exploits1References1

NVD•added 2019/07/03 5:15 p.m.•23 views

CVE-2019-13186

In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, and CVE-2018-20520...

6.1CVSS5.2AI score0.00865EPSS

Exploits1References1

Prion•added 2019/07/03 5:15 p.m.•21 views

Cross site scripting

4.3CVSS5.2AI score0.00865EPSS

Exploits3References1Affected Software1

ATTACKERKB•added 2019/07/03 5:15 p.m.•1 views

CVE-2019-13186

6.1CVSS5.5AI score0.00865EPSS

Exploits3References2

OSV•added 2019/06/27 5:15 p.m.•2 views

DEBIAN-CVE-2019-5833

Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page...

4.3CVSS8.5AI score0.00994EPSS

Exploits0References1

NVD•added 2019/06/27 5:15 p.m.•17 views

CVE-2019-5833

Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page...

4.3CVSS5.4AI score0.00994EPSS

Exploits0References8

UbuntuCve•added 2019/06/27 5:15 p.m.•18 views

CVE-2019-5833

Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page...

4.3CVSS6.8AI score0.00994EPSS

Exploits0References2

Prion•added 2019/06/27 5:15 p.m.•12 views

Design/Logic Flaw

Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page...

4.3CVSS4.9AI score0.00994EPSS

Exploits0References8Affected Software5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by