CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

535 matches found

RedhatCVE•added 2026/04/01 10:58 a.m.•0 views

CVE-2025-10551

A Stored Cross-site Scripting XSS vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00037EPSS

Exploits0References1

EUVD•added 2026/03/31 9:31 a.m.•0 views

EUVD-2025-209132

8.7CVSS6.2AI score0.00037EPSS

Exploits0References2

NVD•added 2026/03/31 9:16 a.m.•1 views

CVE-2025-10551

8.7CVSS0.00037EPSS

Exploits0References1

Cvelist•added 2026/03/31 8:38 a.m.•18 views

CVE-2025-10551 Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

8.7CVSS0.00037EPSS

Exploits0References1

CVE•added 2026/03/31 8:38 a.m.•4 views

CVE-2025-10551

ENOVIA Collaborative Industry Innovator – Document Management (3DEXPERIENCE) is affected by CVE-2025-10551 in releases R2023x through R2025x. It is a Stored XSS vulnerability that could allow an attacker to execute arbitrary script in a user’s browser session. CVSSv3.1 base score 8.7 (High): AV:N...

8.7CVSS6.2AI score0.00037EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/31 8:38 a.m.•0 views

8.7CVSS6.2AI score0.00037EPSS

Exploits0References1

ATTACKERKB•added 2026/03/31 8:38 a.m.•1 views

CVE-2025-10551

8.7CVSS6.2AI score0.00037EPSS

Exploits0References2

CNNVD•added 2026/03/31 12:0 a.m.•2 views

Dassault Systèmes 3DEXPERIENCE Station Launcher App 安全漏洞

Dassault Systèmes 3DEXPERIENCE Station Launcher App is a native program installation tool developed by Dassault Systèmes, a French company. The Dassault Systèmes 3DEXPERIENCE Station Launcher App versions from R2023x to R2025x contain security vulnerabilities. These vulnerabilities stem from a...

8.7CVSS5.9AI score0.00037EPSS

Exploits0References1

Positive Technologies•added 2026/03/31 12:0 a.m.•3 views

PT-2026-29205

8.7CVSS6.2AI score0.00037EPSS

Exploits0References2

EUVD•added 2026/03/21 6:31 p.m.•2 views

EUVD-2019-19903

ownDMS 4.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the IMG parameter. Attackers can send GET requests to pdfstream.php, imagestream.php, or anyfilestream.php with crafted SQL payloads in the...

8.8CVSS6.2AI score0.00066EPSS

Exploits1References5

Positive Technologies•added 2026/02/28 12:0 a.m.•4 views

PT-2026-22468

CVE-2024-62819 Nexus AI Chatbot A production-grade AI chatbot platform, forked from Vercel's Chat SDK and extended with multi-model support, document management, RAG search, and custom AI agents. Live https://t.co/yWk2xxjelG...

5.9AI score

Exploits0References1

RedhatCVE•added 2026/02/26 10:14 a.m.•2 views

CVE-2026-3153

A vulnerability has been found in itsourcecode Document Management System 1.0. Impacted is an unknown function of the file /register.php. Such manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public a...

9.8CVSS5.4AI score0.00039EPSS

Exploits1References1

RedhatCVE•added 2026/02/26 4:16 a.m.•1 views

CVE-2026-3133

A vulnerability has been found in itsourcecode Document Management System 1.0. This issue affects some unknown processing of the file /loging.php of the component Login. The manipulation of the argument Username leads to sql injection. Remote exploitation of the attack is possible. The exploit ha...

9.8CVSS5.2AI score0.00015EPSS

Exploits1References1

EUVD•added 2026/02/25 6:31 a.m.•4 views

EUVD-2026-8509

9.8CVSS5.4AI score0.00039EPSS

Exploits1References6

NVD•added 2026/02/25 6:16 a.m.•2 views

CVE-2026-3153

9.8CVSS0.00039EPSS

Exploits1References5

ATTACKERKB•added 2026/02/25 5:32 a.m.•4 views

CVE-2026-3153

9.8CVSS5.4AI score0.00039EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/02/25 5:32 a.m.•19 views

CVE-2026-3153 itsourcecode Document Management System register.php sql injection

7.5CVSS0.00039EPSS

Exploits1References5

CVE•added 2026/02/25 5:32 a.m.•7 views

CVE-2026-3153

The CVE-2026-3153 entry concerns itsourcecode Document Management System 1.0. A vulnerability in the /register.php file allows manipulation of the Username parameter to perform a SQL injection, with remote exploitation indicated. Multiple connected sources (Red Hat, EU vulnerability catalogs, CVE...

9.8CVSS5.4AI score0.00039EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/25 5:32 a.m.•2 views

CVE-2026-3153 itsourcecode Document Management System register.php sql injection

7.5CVSS5.4AI score0.00039EPSS

Exploits1References5

RedhatCVE•added 2026/02/25 4:6 a.m.•3 views

CVE-2026-3068

A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...

9.8CVSS5.5AI score0.00045EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by