CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

OSV•added 2021/07/16 4:15 p.m.•1 views

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

8.8CVSS6.1AI score

Exploits0References3

Prion•added 2021/04/14 2:15 p.m.•12 views

Cross site scripting

Cross Site Scripting XSS in X2engine X2CRM v7.1 and older allows remote attackers to obtain sensitive information by injecting arbitrary web script or HTML via the "First Name" and "Last Name" fields in "/index.php/contacts/create page"...

3.5CVSS4.9AI score0.00257EPSS

Exploits1References2Affected Software1

CNNVD•added 2021/04/14 12:0 a.m.•2 views

Group Office CRM 跨站脚本漏洞

Group Office CRM is a software application. Share projects, calendars, files and emails with colleagues and clients online. Easy to use and fully customizable. A cross-site scripting vulnerability exists in the Contacts page in Group Office CRM version 6.4.196. An attacker can exploit this...

5.4CVSS5.2AI score0.00172EPSS

Exploits1References2

CNVD•added 2021/02/23 12:0 a.m.•2 views

Monica Cross-Site Scripting Vulnerability

Monica is an open source personal relationship management system. A stored cross-site scripting vulnerability exists in the Contacts page in Monica 2.19.1. The vulnerability can be exploited to conduct a cross-site scripting attack via the Nickname field...

5.4CVSS5.8AI score0.00191EPSS

Exploits1References1

CNVD•added 2021/02/23 12:0 a.m.•5 views

Monica cross-site scripting vulnerability (CNVD-2021-12658)

5.4CVSS5.8AI score0.00191EPSS

Exploits1References1

CNVD•added 2021/02/23 12:0 a.m.•6 views

Monica Cross-Site Scripting Vulnerability (CNVD-2021-12660)

5.4CVSS5.7AI score0.00297EPSS

Exploits4References1

CNNVD•added 2021/02/22 12:0 a.m.•2 views

Monica 跨站脚本漏洞

5.4CVSS5.9AI score0.00191EPSS

Exploits1References3

CNNVD•added 2021/02/22 12:0 a.m.•2 views

Monica 跨站脚本漏洞

5.4CVSS5.9AI score0.00172EPSS

Exploits1References3

CNNVD•added 2021/02/22 12:0 a.m.•2 views

Monica 跨站脚本漏洞

Monica is an open source personal relationship management system. A stored cross-site scripting vulnerability exists in the Contacts page in Monica 2.19.1. The vulnerability can be exploited to conduct cross-site scripting attacks via the Middle Name field...

5.4CVSS5.9AI score0.00191EPSS

Exploits1References3

CNNVD•added 2021/02/22 12:0 a.m.•2 views

Monica 跨站脚本漏洞

5.4CVSS5.8AI score0.00191EPSS

Exploits1References3

CNNVD•added 2021/02/22 12:0 a.m.•2 views

Monica 跨站脚本漏洞

5.4CVSS5.9AI score0.00297EPSS

Exploits4References7

CNVD•added 2020/09/27 12:0 a.m.•2 views

Observium cross-site scripting vulnerability (CNVD-2020-62447)

Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. A cross-site scripting vulnerability exists in pages/contacts.inc.php in Observium. An attacker can exploit this vulnerability to inject and store...

6.1CVSS6.3AI score0.00359EPSS

Exploits0References1

OSV•added 2020/09/25 5:15 p.m.•0 views

CVE-2020-25140

An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to Cross-Site Scripting XSS due to the fact that it is possible to inject and store malicious JavaScript code within it. This can occur in pages/contacts.inc.php...

6.1CVSS6.4AI score

Exploits0References1

Prion•added 2020/09/25 5:15 p.m.•15 views

Cross site scripting

4.3CVSS5.8AI score0.00359EPSS

Exploits0References1Affected Software1

Veracode•added 2019/05/09 2:21 a.m.•14 views

Cross-Site Scripting (XSS)

intelliants/subrion is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitary Javascript into a victim's browser via the name, email and phone parameter in the contacts page...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References2Affected Software1

OSV•added 2018/12/17 3:29 p.m.•2 views

CVE-2018-19818

Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 build 51029. The page "/VPortal/mgtconsole/Contacts.jsp" has reflected XSS via the ConnPoolName parameter...

6.1CVSS5.8AI score

Exploits0References2

CNVD•added 2018/12/11 12:0 a.m.•1 views

Infovista VistaPortal SE Cross-Site Scripting Vulnerability (CNVD-2019-07215)

Infovista VistaPortal SE is a Web-based application from Infovista USA. A cross-site scripting vulnerability exists in the '/VPortal/mgtconsole/Contacts.jsp' page in Infovista VistaPortal SE version 5.1 build 51029, which can be exploited by a remote attacker to inject arbitrary web script or HTM...

6.1CVSS5.9AI score0.00234EPSS

Exploits2References1

Openbugbounty•added 2016/03/09 9:40 a.m.•7 views

e-kb.ru XSS vulnerability

Vulnerable URL: http://e-kb.ru/contacts/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 1 VIP website status:| No Check e-kb.ru SSL...

6.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by