CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

875 matches found

CNVD•added 2019/10/29 12:0 a.m.•3 views

pixelpost cross-site scripting vulnerability (CNVD-2019-39941)

pixelpost is a set of PHP and MySQL based , scalable open source photo blog application . A cross-site scripting vulnerability exists in pixelpost version 1.7.1-5, which stems from a lack of proper validation of client-side data in the WEB application and can be exploited by an attacker to execut...

6.1CVSS6.4AI score0.00969EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•3 views

WordPress Easy Digital Downloads Free Downloads extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Free Downloads extension is a free download management plugin used in it. A cross-site scripting...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads htaccess Editor extension cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD htaccess Editor extension is an htaccess editor plugin used in it. A cross-site scripting...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Shoppette theme cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Shoppette theme is an e-commerce website theme plugin used in it. A cross-site scripting...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Digital Store theme cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Digital Store theme is used in which a digital product online sales theme website plugin. A...

6.1CVSS6.2AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Recurring Payments extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Recurring Payments extension is a payment gateway plugin used in it. A cross-site scripting vulnerability...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Wish Lists extension cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform using PHP language development. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Wish Lists extension is a product collection plugin used in it. A cross-site scripting...

6.1CVSS6.2AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Quota theme cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Quota theme is a Quota theme plugin used in it. A cross-site scripting vulnerability exists in th...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Upload File extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Upload File extension is a file upload plugin used in it. A cross-site scripting vulnerability...

6.1CVSS6.4AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/29 12:0 a.m.•2 views

WordPress Easy Digital Downloads Stripe extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Stripe extension is a payment gateway plugin used in it. A cross-site scripting vulnerability exists in the...

6.1CVSS6.3AI score0.00923EPSS

Exploits0References1

CNVD•added 2019/10/28 12:0 a.m.•2 views

WordPress broken-link-checker plugin cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. broken-link-checker is an invalid link checker plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

6.1CVSS6.3AI score0.01395EPSS

Exploits1References1

CNVD•added 2019/10/24 12:0 a.m.•3 views

Dolibarr ERP/CRM Cross-Site Scripting Vulnerability (CNVD-2019-39369)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr ERP/CR...

5.4CVSS6.4AI score0.00817EPSS

Exploits1References1

CNVD•added 2019/10/24 12:0 a.m.•3 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-38071)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX 4.5.7 and earlier versions, which...

6.1CVSS6.4AI score0.00655EPSS

Exploits0References1

CNVD•added 2019/10/24 12:0 a.m.•1 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-38805)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX. An attacker can exploit this...

6.1CVSS6.4AI score0.00672EPSS

Exploits0References1

CNVD•added 2019/10/24 12:0 a.m.•5 views

Sitemagic CMS cross-site scripting vulnerability (CNVD-2019-38803)

Sitemagic CMS is a scalable content management system CMS. A cross-site scripting vulnerability exists in Sitemagic CMS. An attacker could exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.00856EPSS

Exploits0References1

CNVD•added 2019/10/23 12:0 a.m.•2 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-37107)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX. An attacker can exploit this...

6.1CVSS6.4AI score0.00803EPSS

Exploits0References1

CNVD•added 2019/10/23 12:0 a.m.•2 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-37105)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX. An attacker can exploit this...

6.1CVSS6.4AI score0.00824EPSS

Exploits0References1

CNVD•added 2019/10/23 12:0 a.m.•1 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-37106)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX. An attacker can exploit this...

6.1CVSS6.4AI score0.00841EPSS

Exploits0References1

CNVD•added 2019/10/23 12:0 a.m.•1 views

FusionPBX Cross-Site Scripting Vulnerability (CNVD-2019-37371)

FusionPBX is a scalable, multi-threaded communications platform. The platform can be used as a call center server, fax server, VOIP server, voicemail server, conference server and voice application server. A cross-site scripting vulnerability exists in FusionPBX. An attacker can exploit this...

6.1CVSS6.4AI score0.00803EPSS

Exploits0References1

CNVD•added 2019/10/23 12:0 a.m.•1 views

Totemo totemodata Cross-Site Scripting Vulnerability

Totemo totemodata is an enterprise secure file transfer solution from Totemo Switzerland. A cross-site scripting vulnerability exists in Totemo totemodata version 3.0.0b936, which stems from a lack of proper validation of client-side data by the WEB application and can be exploited by an attacker...

5.4CVSS6.4AI score0.00773EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by