CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

RedhatCVE•added 2025/05/23 9:46 a.m.•9 views

CVE-2024-25875

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Undertitle text field...

6.1CVSS5.7AI score0.00424EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:45 a.m.•8 views

CVE-2024-25874

A cross-site scripting XSS vulnerability in the New/Edit Article module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Create Tag text field...

5.4CVSS5.2AI score0.00397EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:31 a.m.•8 views

CVE-2024-25876

6.1CVSS5.7AI score0.00443EPSS

Exploits1References1

Github Security Blog•added 2024/02/22 3:30 p.m.•18 views

Enhavo Cross-site Scripting vulnerability

6.1CVSS5.7AI score0.00443EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2024/02/22 3:30 p.m.•21 views

Enhavo Cross-site Scripting vulnerability

6.1CVSS5.7AI score0.00424EPSS

Exploits1References4Affected Software1

OSV•added 2024/02/22 3:30 p.m.•10 views

GHSA-38M8-5GFC-663G Enhavo Cross-site Scripting vulnerability

5.4CVSS5.2AI score0.00397EPSS

Exploits1References4

OSV•added 2024/02/22 3:30 p.m.•12 views

GHSA-C579-HHW5-CR3P Enhavo Cross-site Scripting vulnerability

6.1CVSS5.8AI score0.00424EPSS

Exploits1References4

Github Security Blog•added 2024/02/22 3:30 p.m.•15 views

Enhavo Cross-site Scripting vulnerability

5.4CVSS5.7AI score0.00397EPSS

Exploits1References4Affected Software1

NVD•added 2024/02/22 2:15 p.m.•27 views

CVE-2024-25876

6.1CVSS5.5AI score0.00443EPSS

Exploits1References2

OSV•added 2024/02/22 2:15 p.m.•5 views

CVE-2024-25876

6.1CVSS5.9AI score

Exploits0References2

OSV•added 2024/02/22 2:15 p.m.•9 views

CVE-2024-25875

6.1CVSS5.9AI score

Exploits0References2

NVD•added 2024/02/22 2:15 p.m.•12 views

CVE-2024-25874

5.4CVSS5.5AI score0.00397EPSS

Exploits1References2

OSV•added 2024/02/22 2:15 p.m.•6 views

CVE-2024-25874

5.4CVSS5.2AI score

Exploits0References2

Prion•added 2024/02/22 2:15 p.m.•18 views

Cross site scripting

6.1AI score0.00443EPSS

Exploits1References2

Prion•added 2024/02/22 2:15 p.m.•8 views

Cross site scripting

6.1AI score0.00397EPSS

Exploits1References2

Vulnrichment•added 2024/02/22 12:0 a.m.•21 views

CVE-2024-25875

5.7AI score0.00424EPSS

Exploits1References2

Cvelist•added 2024/02/22 12:0 a.m.•16 views

CVE-2024-25875

5.7AI score0.00424EPSS

Exploits1References2

Vulnrichment•added 2024/02/22 12:0 a.m.•11 views

CVE-2024-25876

5.9AI score0.00443EPSS

Exploits1References2

CVE•added 2024/02/22 12:0 a.m.•4105 views

CVE-2024-25874

CVE-2024-25874 is an XSS in Enhavo CMS v0.13.1, exposed in the New/Edit Article module via the Create Tag field. The vulnerability allows execution of arbitrary scripts/HTML when a crafted payload is injected into that field. Public details confirm the affected software/component and impact, but ...

5.4CVSS5.6AI score0.00397EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2024/02/22 12:0 a.m.•4 views

PT-2024-21179 · Unknown · Enhavo Cms

Name of the Vulnerable Software and Affected Versions: Enhavo CMS version 0.13.1 Description: A cross-site scripting XSS issue in the Header module allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Undertitle text field. This enables attackers to...

6.1CVSS6.2AI score0.00424EPSS

Exploits1References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by