Lucene search
K

165 matches found

NVD
NVD
added 2026/06/09 5:17 p.m.11 views

CVE-2026-48256

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/04/14 7:16 p.m.10 views

CVE-2026-34623

Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation of thi...

5.4CVSS0.00157EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/01 8:51 a.m.3 views

CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force Ultimate Addons for WPBakery Page Builder allows DOM-Based XSS.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a before 3.21.4...

6.5CVSS5.9AI score0.00173EPSS
Exploits0References1
Atlassian
Atlassian
added 2026/02/24 9:28 p.m.17 views

DOM-based XSS @remix-run/router Dependency in Crowd Data Center

This High severity DOM-based XSS vulnerability was introduced in version 7.1.0 of Crowd Data Center. This DOM-based XSS vulnerability, with a CVSS Score of 8 and a CVSS Vector of CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N allows an unauthenticated attacker to execute arbitrary HTML or JavaScrip...

8CVSS6.1AI score0.0077EPSS
Exploits0
CVE
CVE
added 2026/02/20 3:46 p.m.15 views

CVE-2025-68854

CVE-2025-68854 is a WordPress plugin vulnerability in ID Arrays (id-arrays)

7.1CVSS5.5AI score0.00236EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:43 a.m.7 views

CVE-2022-26263

Yonyou u8 v13.0 was discovered to contain a DOM-based cross-site scripting XSS vulnerability via the component /u8sl/WebHelp...

6.1CVSS6.2AI score0.37682EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/01 1:34 p.m.4 views

CVE-2025-62097

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in seothemes SEO Slider seo-slider allows DOM-Based XSS.This issue affects SEO Slider: from n/a through = 1.1.1...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 12:1 p.m.4 views

EUVD-2025-205924

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ruhul Amin Content Fetcher allows DOM-Based XSS.This issue affects Content Fetcher: from n/a through 1.1...

6.5CVSS5.9AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.3 views

PT-2025-54334

Name of the Vulnerable Software and Affected Versions WooCommerce Parcelas versions through 1.3.5 Description The software contains a flaw related to improper input handling during web page generation, specifically a DOM-Based Cross-Site Scripting issue. This allows for the potential execution of...

5.9CVSS6.2AI score0.00182EPSS
Exploits0References3
NVD
NVD
added 2025/12/10 7:16 p.m.6 views

CVE-2025-64563

Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitation of this issue requires user interaction,...

5.4CVSS0.0017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49923

CVE-2025-67549 Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobbingwide oik oik allows DOM-Based XSS.This issue affects oik:… https://t.co/n89C6BHSeV...

6.5CVSS6.4AI score0.00161EPSS
Exploits0References3
NVD
NVD
added 2025/10/22 3:15 p.m.4 views

CVE-2025-49936

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in xtemos WoodMart woodmart allows DOM-Based XSS.This issue affects WoodMart: from n/a through 8.3.2...

6.5CVSS0.00198EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.7 views

CVE-2025-58961

CVE-2025-58961 is a DOM-based XSS vulnerability in the WordPress CF7 Auto Responder Addon (CF7-autoresponder-addon), affecting versions up to and including 2.4. The issue arises from improper input handling during web page generation, enabling cross-site scripting. Public writeups from CNVD, RH, ...

7.1CVSS6AI score0.00221EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-12955

Malware in sbrugna...

6.1CVSS6.3AI score0.01543EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27203

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00502EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2650

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00453EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-43975

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00563EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-29813

Malicious code in bioql PyPI...

9.6CVSS9.3AI score0.01837EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-40672

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00624EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-46171

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00877EPSS
Exploits0References1
Rows per page
Query Builder