CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

876 matches found

CNVD•added 2020/04/16 12:0 a.m.•2 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-26952)

NETGEAR D7800 and others are products of NETGEAR, Inc.NETGEAR D7800 is a wireless modem.NETGEAR R7500 is a wireless router.NETGEAR XR500 is a wireless router.NETGEAR R7500 is a wireless router.NETGEAR R7500 is a wireless router.NETGEAR R7500 is a wireless router.NETGEAR R7500 is a wireless...

6CVSS6.4AI score0.00439EPSS

Exploits0References1

CNVD•added 2020/04/16 12:0 a.m.•2 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-26939)

6CVSS6.4AI score0.00482EPSS

Exploits0References1

CNVD•added 2020/04/13 12:0 a.m.•3 views

eten Technologies PSG-6528VM Cross-Site Scripting Vulnerability

The eten Technologies PSG-6528VM is a Gigabit PoE switch from eten Technologies of Taiwan, China. A cross-site scripting vulnerability exists in the eten Technologies PSG-6528VM version 1.1. The vulnerability stems from the lack of proper validation of client data by the WEB application. An...

5.4CVSS6.4AI score0.00673EPSS

Exploits1

CNVD•added 2020/04/07 12:0 a.m.•3 views

Periscope Holdings BuySpeed Cross-Site Scripting Vulnerability

Periscope Holdings BuySpeed is a procurement process management system from Periscope Holdings, USA. The system includes vendor management, purchasing management, order management and contract management functions. A cross-site scripting vulnerability exists in Periscope Holdings BuySpeed version...

5.4CVSS6.3AI score0.00639EPSS

Exploits0References1

CNVD•added 2020/04/01 12:0 a.m.•3 views

ZyXEL Zyxel XGS2210-52HP Cross-Site Scripting Vulnerability

ZyXEL Zyxel XGS2210-52HP is a managed switch from ZyXEL Taiwan, China. A cross-site scripting vulnerability exists in the ZyXEL Zyxel XGS2210-52HP using firmware version 4.50. The vulnerability stems from a lack of proper validation of client data by the WEB application. An attacker can exploit t...

5.4CVSS6.4AI score0.0062EPSS

Exploits1

CNVD•added 2020/03/30 12:0 a.m.•0 views

Intland Software codeBeamer Cross-Site Scripting Vulnerability

Intland Software codeBeamer is an application lifecycle management platform from Intland Software, Germany. The platform supports application lifecycle management, requirements management, risk management and software development. A cross-site scripting vulnerability exists in Intland Software...

4.8CVSS6.4AI score0.00801EPSS

Exploits2References1

CNVD•added 2020/03/30 12:0 a.m.•2 views

OTRS Cross-Site Scripting Vulnerability

Open-source Ticket Request System OTRS is an open-source defect tracking and management system software from the German OTRS Group. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and the...

5.4CVSS6.4AI score0.00835EPSS

Exploits0References1

CNVD•added 2020/03/27 12:0 a.m.•2 views

Dart Cross-Site Scripting Vulnerability

Dart is an open source programming language. A cross-site scripting vulnerability exists in Dart. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.00316EPSS

Exploits0

CNVD•added 2020/03/26 12:0 a.m.•2 views

CloudBees Jenkins RapidDeploy plugin cross-site scripting vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . RapidDeploy Plugin is used in one of the...

5.4CVSS6.4AI score0.00735EPSS

Exploits0References1

CNVD•added 2020/03/20 12:0 a.m.•3 views

Ignite Realtime Openfire Cross-Site Scripting Vulnerability (CNVD-2020-22261)

Ignite Realtime Openfire is the Ignite Realtime community of a Java development and based on XMPP formerly known as Jabber, Instant Messaging Protocol cross-platform open source real-time collaboration RTC server , it can build a highly efficient instant messaging server , and supports tens of...

6.1CVSS6.4AI score0.00906EPSS

Exploits1References1

CNVD•added 2020/03/20 12:0 a.m.•4 views

ilchCMS Cross-Site Scripting Vulnerability

ilch CMS is a content management system that provides a basic system that is easily extensible. A cross-site scripting vulnerability exists in ilchCMS, which can be exploited by an attacker to execute client-side code...

6.1CVSS6.4AI score0.007EPSS

Exploits2References1

CNVD•added 2020/03/20 12:0 a.m.•3 views

ilchCMS Cross-Site Scripting Vulnerability (CNVD-2020-19202)

6.1CVSS6.4AI score0.007EPSS

Exploits2References1

CNVD•added 2020/03/20 12:0 a.m.•2 views

ilchCMS Cross-Site Scripting Vulnerability (CNVD-2020-19203)

6.1CVSS6.4AI score0.00686EPSS

Exploits1References1

CNVD•added 2020/03/20 12:0 a.m.•2 views

NETSAS Enigma NMS Cross-Site Scripting Vulnerability (CNVD-2020-18995)

NETSAS Enigma NMS is a suite of network management and monitoring tools from NETSAS Australia. A cross-site scripting vulnerability exists in NETSAS Enigma NMS version 65.0.0 and earlier. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An...

6.1CVSS6.4AI score0.00686EPSS

Exploits1References1

CNVD•added 2020/03/20 12:0 a.m.•2 views

ERPNext cross-site scripting vulnerability (CNVD-2020-19004)

ERPNext is an open source enterprise resource planning solution from ERPNext India. A cross-site scripting vulnerability exists in ERPNext version 11.1.47. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerabilit...

7.4CVSS6.4AI score0.00786EPSS

Exploits1References1

CNVD•added 2020/03/18 12:0 a.m.•2 views

Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2020-18398)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...

5.4CVSS6.4AI score0.00928EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•2 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A cross-site scripting vulnerability exists in the way URIs are handled in the admin/header.php file in Chadha Software Technologies...

4.8CVSS6.4AI score0.00611EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•2 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-17949)

4.8CVSS6.4AI score0.00733EPSS

Exploits1References1

CNVD•added 2020/03/13 12:0 a.m.•1 views

Chadha Software Technologies PHPKB Standard Multi-Language Cross-Site Scripting Vulnerability (CNVD-2020-17950)

4.8CVSS6.4AI score0.00733EPSS

Exploits1References1

CNVD•added 2020/03/09 12:0 a.m.•2 views

Cross-site scripting vulnerability in multiple Lexmark products (CNVD-2020-19522)

The Lexmark CS31x, among others, is a printer from Lexmark USA. A cross-site scripting vulnerability exists in the web server built into several Lexmark products, which stems from a lack of proper validation of client-side data by the WEB application and can be exploited by an attacker to execute...

5.4CVSS6.4AI score0.00653EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by