Lucene search
K

8 matches found

Circl
Circl
added 2023/05/23 7:30 a.m.5 views

CVE-2023-25440

creationtimestamp| type| source ---|---|--- 2023-05-23 07:30:54+00:00| seen| https://t.me/cibsecurity/64608 2025-02-01 17:28:09+00:00| seen| Telegram/6Ke7qjy6vTVAp5B86pq9YhP9WG8I4pWLXvnpO9OGw9mrkZ...

5.4CVSS5.4AI score0.02537EPSS
Exploits4References1
OSV
OSV
added 2023/05/23 1:15 a.m.4 views

CVE-2023-25440

Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...

5.4CVSS6AI score0.02537EPSS
Exploits4References2
Vulnrichment
Vulnrichment
added 2023/05/23 12:0 a.m.9 views

CVE-2023-25440

Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...

5.3AI score0.02537EPSS
Exploits4References2
UbuntuCve
UbuntuCve
added 2023/05/23 12:0 a.m.14 views

CVE-2023-25440

Stored Cross Site Scripting XSS vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field...

5.4CVSS6.4AI score0.02537EPSS
Exploits4References3
Exploit DB
Exploit DB
added 2023/05/23 12:0 a.m.368 views

CiviCRM 5.59.alpha1 - Stored XSS (Cross-Site Scripting)

Exploit Title: CiviCRM 5.59.alpha1 - Stored XSS Cross-Site Scripting Date: 2023-02-02 Exploit Author: Andrea Intilangelo Vendor Homepage: https://civicrm.org Software Link: https://civicrm.org/download Version: 5.59.alpha1, 5.58.0 and earlier, 5.57.3 and earlier Tested on: Latest Version of Deskt...

5.4CVSS5.5AI score0.02537EPSS
Exploits4
CVE
CVE
added 2023/05/23 12:0 a.m.66 views

CVE-2023-25440

CVE-2023-25440 affects CiviCRM 5.59.alpha1. The vulnerability is a Stored Cross-Site Scripting (XSS) in the Add Contact function, exploitable via the first/second name fields, enabling an attacker to execute arbitrary scripts when the page loads. Multiple connected sources confirm the issue and r...

5.4CVSS5.3AI score0.02537EPSS
Exploits4References2Affected Software1
Packet Storm
Packet Storm
added 2023/05/19 12:0 a.m.372 views

CiviCRM 5.59.alpha1 Cross Site Scripting

Exploit Title: CiviCRM 5.59.alpha1 - Stored XSS Cross-Site Scripting Date: 2023-02-02 Exploit Author: Andrea Intilangelo Vendor Homepage: https://civicrm.org Software Link: https://civicrm.org/download Version: 5.59.alpha1, 5.58.0 and earlier, 5.57.3 and earlier Tested on: Latest Version of Deskt...

7.1AI score0.02537EPSS
Exploits4
0day.today
0day.today
added 2023/05/19 12:0 a.m.364 views

CiviCRM 5.59.alpha1 Cross Site Scripting Vulnerability

Exploit Title: CiviCRM 5.59.alpha1 - Stored XSS Cross-Site Scripting Exploit Author: Andrea Intilangelo Vendor Homepage: https://civicrm.org Software Link: https://civicrm.org/download Version: 5.59.alpha1, 5.58.0 and earlier, 5.57.3 and earlier Tested on: Latest Version of Desktop Web Browsers...

5.4CVSS7.1AI score0.02537EPSS
Exploits4
Rows per page
Query Builder