CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

682 matches found

CVE•added 2023/07/11 12:0 a.m.•63 views

CVE-2023-36163

The CVE-2023-36163 entry documents a Cross-Site Scripting (XSS) vulnerability in IP-DOT BuildaGate v.BuildaGate5. The issue is exploitable via a crafted script injected into the URL parameter mc , enabling a remote attacker to execute arbitrary code. Public PoC details exist (ExploitDB) showing t...

6.1CVSS6.3AI score0.16743EPSS

Exploits5References5Affected Software1

CNNVD•added 2023/07/11 12:0 a.m.•1 views

IP-DOT BuildaGate 跨站脚本漏洞

IP-DOT BuildaGate is an application from IP-DOT, Inc. IP-DOT BuildaGate 5 suffers from a cross-site scripting vulnerability that originates from allowing a remote attacker to execute arbitrary code via a crafted script...

6.1CVSS6.6AI score0.16743EPSS

Exploits5References7

Cvelist•added 2023/07/11 12:0 a.m.•15 views

CVE-2023-36163

Cross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL...

6.5AI score0.16743EPSS

Exploits5References5

Vulnrichment•added 2023/07/11 12:0 a.m.•9 views

CVE-2023-36163

Cross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL...

7.1AI score0.16743EPSS

Exploits5References5

Positive Technologies•added 2023/07/10 12:0 a.m.•4 views

PT-2023-25467 · Avg · Avg Anti-Spyware

Name of the Vulnerable Software and Affected Versions: AVG Anti-Spyware version 7.5 Description: An issue in AVG Anti-Spyware allows an attacker to execute arbitrary code via a crafted script to the guard.exe component. Recommendations: For AVG Anti-Spyware version 7.5, consider updating to a new...

7.3AI score

Exploits3References5

ATTACKERKB•added 2023/07/07 4:15 p.m.•1 views

CVE-2023-25201

Cross Site Request Forgery CSRF vulnerability in MultiTech Conduit AP MTCAP2-L4E1 MTCAP2-L4E1-868-042A v.6.0.0 allows a remote attacker to execute arbitrary code via a crafted script upload...

8.8CVSS6.3AI score0.01136EPSS

Exploits1References3

OSV•added 2023/07/07 4:15 p.m.•9 views

CVE-2023-36201

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

7.5CVSS6AI score

Exploits0References1

ATTACKERKB•added 2023/07/07 4:15 p.m.•3 views

CVE-2023-36201

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

7.5CVSS7.1AI score0.0015EPSS

Exploits0References2

NVD•added 2023/07/07 4:15 p.m.•22 views

CVE-2023-36201

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

7.5CVSS7.2AI score0.0015EPSS

Exploits0References1

UbuntuCve•added 2023/07/07 4:15 p.m.•18 views

CVE-2023-36201

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

7.5CVSS7.1AI score0.0015EPSS

Exploits0References2

Prion•added 2023/07/07 4:15 p.m.•22 views

Design/Logic Flaw

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

5CVSS7.1AI score0.0015EPSS

Exploits0References1Affected Software1

Debian CVE•added 2023/07/07 12:0 a.m.•16 views

CVE-2023-36201

Removed by vendor...

7.5CVSS7.5AI score0.0015EPSS

Exploits0

Vulnrichment•added 2023/07/07 12:0 a.m.•10 views

CVE-2023-36201

An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays...

7.2AI score0.0015EPSS

Exploits0References1

Positive Technologies•added 2023/07/07 12:0 a.m.•2 views

PT-2023-25479 · Jerryscriptproject · Jerryscript

Name of the Vulnerable Software and Affected Versions: JerryscriptProject jerryscript version 3.0.0 Description: An issue in JerryscriptProject jerryscript allows an attacker to obtain sensitive information via a crafted script to the arrays. Recommendations: For version 3.0.0, consider restricti...

7.5CVSS6.6AI score0.0015EPSS

Exploits0References8

OSV•added 2023/07/06 4:15 p.m.•35 views

CVE-2023-34192

Cross Site Scripting vulnerability in Zimbra ZCS v.8.8.15 allows a remote authenticated attacker to execute arbitrary code via a crafted script to the /h/autoSaveDraft function...

9CVSS7.1AI score0.89617EPSS

Exploits0References4

Prion•added 2023/07/06 4:15 p.m.•24 views

Cross site scripting

Cross Site Scripting vulnerability in Zimbra ZCS v.8.8.15 allows a remote authenticated attacker to execute arbitrary code via a crafted script to the /h/autoSaveDraft function...

6CVSS8.7AI score0.89617EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2023/06/30 12:0 a.m.•36 views

Oracle Linux 8 : sqlite (ELSA-2023-3840)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-3840 advisory. - Bumped release to add correct changelog entry. Version 3.26.0-18 fixes CVE-2020-24736 Tenable has extracted the preceding description block directly from the...

5.5CVSS6.7AI score0.00031EPSS

Exploits1References2

NVD•added 2023/06/27 6:15 p.m.•15 views

CVE-2023-34836

A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allows a remote attacker to execute arbitrary code via a crafted script to the Dtltyp and ListName parameters...

5.4CVSS5.8AI score0.02115EPSS

Exploits1References1

Prion•added 2023/06/27 6:15 p.m.•19 views

Cross site scripting

4.9CVSS5.8AI score0.02115EPSS

Exploits1References1Affected Software1

Prion•added 2023/06/27 6:15 p.m.•12 views

Cross site scripting

4.9CVSS5.7AI score0.02115EPSS

Exploits1References1Affected Software1

Rows per page