Lucene search
K

313 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.9 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS5.5AI score0.00181EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:35 p.m.9 views

CVE-2026-5805

A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contactus.php. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available...

7.5CVSS7AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.8 views

CVE-2026-44212

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.4AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2026/05/18 8:54 a.m.5 views

BIT-PRESTASHOP-2026-44212 PrestaShop: Stored XSS executable in customer service view

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/14 8:44 p.m.6 views

CVE-2026-44212

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/14 8:44 p.m.9 views

EUVD-2026-30481

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References1
CVE
CVE
added 2026/05/14 8:44 p.m.38 views

CVE-2026-44212

CVE-2026-44212 concerns PrestaShop's back-office Customer Service view. A stored XSS exists where an unauthenticated attacker can submit the public Contact Us form with a malicious email; the payload is stored in the database and executes when a back-office employee opens the affected customer th...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/11 2:21 a.m.13 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

6.1CVSS5.6AI score0.00181EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/05/08 4:54 p.m.12 views

PrestaShop has a stored XSS executable in customer service view

Impact This is a stored Cross-site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The payload is stored in the database and executed when a back-office employee open...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/04/14 6:30 p.m.3 views

EUVD-2025-209445

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

5.7AI score0.00181EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/14 6:30 p.m.5 views

EUVD-2025-209447

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS5.8AI score0.00181EPSS
Exploits1References2
NVD
NVD
added 2026/04/14 4:16 p.m.3 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

6.1CVSS0.00181EPSS
Exploits1References1
NVD
NVD
added 2026/04/14 4:16 p.m.7 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

6.1CVSS0.00181EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/14 12:0 a.m.3 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

5.7AI score0.00181EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/14 12:0 a.m.2 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

5.8AI score0.00181EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32660

CVE-2025-65136 In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter. https://t.co/Nv3V9nifh4...

6.1CVSS5.8AI score0.00181EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/14 12:0 a.m.29 views

CVE-2025-65134

In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST parameter...

0.00181EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32658

CVE-2025-65134 In manikandan580 School-management-system 1.0, a reflected cross-site scripting XSS vulnerability exists in /studentms/admin/contact-us.php via the email POST param… https://t.co/M90l94mWC9...

5.6AI score0.00181EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/14 12:0 a.m.31 views

CVE-2025-65136

In manikandan580 School-management-system 1.0, a reflected XSS vulnerability exists in /studentms/admin/contact-us.php via the pagedes POST parameter...

0.00181EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.8 views

School-Management-System 安全漏洞

School-Management-System is a school management system developed by Lahiru Danushka. Version 1.0 of School-Management-System has security vulnerabilities, which stem from improper handling of email POST parameters in the file /studentms/admin/contact-us.php. This could lead to reflection-type...

6.1CVSS5.6AI score0.00181EPSS
Exploits1References1
Rows per page
Query Builder