CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/21 12:30 p.m.•9 views

CVE-2025-41024

Stored Cross-Site Scripting XSS in Poultry Farm Management System v1.0 due to the lack of proper validation of user input by sending a POST request. The relationship between parameters and assigned identifiers is as follows: 'companyaddress', 'companyemail', 'companyname', 'country', 'mobilenumbe...

5.4CVSS5.5AI score0.00162EPSS

Exploits0References1

OSV•added 2026/01/20 12:15 p.m.•3 views

CVE-2025-41024

5.4CVSS5.8AI score0.00162EPSS

Exploits0References1

Positive Technologies•added 2026/01/20 12:0 a.m.•5 views

PT-2026-3550

Name of the Vulnerable Software and Affected Versions Poultry Farm Management System version 1.0 Description A stored Cross-Site Scripting XSS issue exists due to insufficient validation of user-supplied data when a POST request is made. The following parameters in the '/farm/farmprofile.php'...

5.4CVSS5.4AI score0.00162EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-13084

Malware in sbrugna...

5.4CVSS5.5AI score0.00531EPSS

Exploits1References2

OSV•added 2023/09/30 11:15 p.m.•1 views

CVE-2023-43733

Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "companyaddress" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...

5.4CVSS5.9AI score

Exploits0References2

CNNVD•added 2023/01/07 12:0 a.m.•2 views

Event Management System 跨站脚本漏洞

Event Management System is an event management system. A cross-site scripting XSS vulnerability exists in SourceCodester Royale Event Management System version 1.0, which originates from an unknown function in the file /royalevent/companyprofile.php, where manipulation of the parameters...

6.1CVSS3.9AI score0.00657EPSS

Exploits0References4

Positive Technologies•added 2023/01/07 12:0 a.m.•2 views

PT-2023-12632 · Sourcecodester · Sourcecodester Royale Event Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Royale Event Management System version 1.0 Description: A problematic issue has been found in the system, affecting an unknown function of the file /royal event/companyprofile.php. The manipulation of the companyname, regno,...

6.1CVSS4.7AI score0.00657EPSS

Exploits0References6

OSV•added 2018/12/28 4:29 p.m.•4 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.4CVSS5.8AI score0.00531EPSS

Exploits1References1

NVD•added 2018/12/28 4:29 p.m.•11 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.4CVSS5.3AI score0.00531EPSS

Exploits1References1

Cvelist•added 2018/12/27 6:0 p.m.•13 views

CVE-2018-20530

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896...

5.3AI score0.00531EPSS

Exploits1References1

CVE•added 2018/12/27 6:0 p.m.•46 views

CVE-2018-20530

The CVE pertains to PHP Scripts Mall Website Seller Script 2.0.5, with an XSS vulnerability exposed via the Profile field (e.g., Company Address/Personal Address). The issue is associated with CVE-2018-20530 and related to CVE-2018-15896. According to the provided documents, the vulnerability ena...

5.4CVSS5.2AI score0.00531EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by