CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Hacker One•added 2023/01/13 2:47 p.m.•58 views

U.S. Dept Of Defense: Reflected XSS at ████████

A reflected cross-site scripting XSS vulnerability was discovered in the dochelper feature of a certain domain. An attacker could inject a crafted script into the userId parameter, which would execute when the victim user accessed the page, potentially allowing the attacker to steal the victim's...

6.1CVSS5.9AI score0.00279EPSS

Exploits0

Circl•added 2020/09/01 3:30 p.m.•3 views

CVE-2016-5682

creationtimestamp| type| source ---|---|--- 2020-09-01 15:30:58+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-p239-93f7-h6xf...

6.1CVSS6.5AI score0.00279EPSS

Exploits0References1

RedhatCVE•added 2017/04/19 1:18 p.m.•21 views

CVE-2016-5682

Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section...

6.1CVSS3.7AI score0.00279EPSS

Exploits0References2

NVD•added 2017/04/10 3:59 a.m.•17 views

CVE-2016-5682

Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section...

6.1CVSS6.6AI score0.00279EPSS

Exploits0References1

OSV•added 2017/04/10 3:59 a.m.•12 views

CVE-2016-5682

Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section...

6.1CVSS5.7AI score

Exploits0References1

CVE•added 2017/04/10 3:0 a.m.•72 views

CVE-2016-5682

Swagger-UI is affected by an XSS vulnerability in the Definitions section via the Default field, affecting versions before 2.2.1. The issue allows a remote attacker to inject script that could run in a victim’s browser and potentially steal cookie-based credentials. Remediation per the provided s...

6.1CVSS5.8AI score0.00279EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by