CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

47 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-20440

Malware in sbrugna...

4.8CVSS5.1AI score0.00235EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 9:46 a.m.•7 views

CVE-2024-25875

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Undertitle text field...

6.1CVSS5.7AI score0.00083EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:46 a.m.•5 views

CVE-2024-25873

Enhavo v0.13.1 was discovered to contain an HTML injection vulnerability in the Author text field under the Blockquote module. This vulnerability allows attackers to execute arbitrary code via a crafted payload...

5.4CVSS8.2AI score0.00113EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:45 a.m.•8 views

CVE-2024-25874

A cross-site scripting XSS vulnerability in the New/Edit Article module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Create Tag text field...

5.4CVSS5.2AI score0.00077EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:31 a.m.•6 views

CVE-2024-25876

6.1CVSS5.7AI score0.0018EPSS

Exploits1References1

Veracode•added 2024/02/23 6:57 a.m.•11 views

Cross-site Scripting (XSS)

Enhavo is vulnerable to Cross-site Scripting XSS. The vulnerability is due to the Create Tag functionality, allowing attackers to inject arbitrary web scripts or HTML via a crafted payload into the Create Tag field within the New/Edit Article panel...

5.4CVSS6.4AI score0.00077EPSS

Exploits1References3Affected Software1