Lucene search
K

76 matches found

EUVD
EUVD
added 2026/06/29 1:15 p.m.7 views

EUVD-2026-40090

A vulnerability was detected in SourceCodester Inventory Management System 1.0. Impacted is an unknown function of the file /api/usershandler.php of the component User Registration Endpoint. Performing a manipulation of the argument fullname results in cross site scripting. The attack is possible...

5.1CVSS4.4AI score0.00191EPSS
Exploits0References5
Hacker One
Hacker One
added 2026/04/13 9:57 a.m.12 views

Revive Adserver: Stored XSS via Full Name field in userlog email entries

Vulnerability description not provided...

5.8AI score0.00339EPSS
Exploits1
Snyk
Snyk
added 2026/03/18 12:58 p.m.6 views

Cross-site Scripting (XSS)

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the fullName field in the revision/draft context menu, which is rendered as raw HTML due to improper handling with Template::raw and string interpolation. An...

6.4CVSS5.8AI score0.00243EPSS
Exploits0References2
OSV
OSV
added 2026/03/18 12:58 p.m.7 views

GHSA-3X4W-MXPF-FHQQ Craft CMS Vulnerable to Stored XSS in Revision Context Menu

The revision/draft context menu in the element editor renders the creator’s fullName as raw HTML due to the use of Template::raw combined with Craft::t string interpolation. A low-privileged control panel user e.g., Author can set their fullName to an XSS payload via the profile editor, then crea...

5.3CVSS5.8AI score0.00243EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-4629

Malware in sbrugna...

4.3CVSS6.2AI score0.03217EPSS
Exploits6References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-13191

Malware in sbrugna...

5.4CVSS5.5AI score0.00665EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0592

Malware in sbrugna...

4.3CVSS6.4AI score0.01207EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-5930

Malware in sbrugna...

4.8CVSS5.1AI score0.0067EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7062

Malware in sbrugna...

6.1CVSS6.3AI score0.00692EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-16974

Malware in sbrugna...

5.4CVSS5.4AI score0.01773EPSS
Exploits4References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-44592

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00336EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-22232

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE CVE-2021-22232 Note that Nessus relies on the...

5.4CVSS5.6AI score0.00747EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:45 a.m.9 views

CVE-2024-46300

itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting XSS via the Full Name field in registration.php...

6.1CVSS6.1AI score0.0035EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:5 p.m.6 views

CVE-2021-24930

The WordPress Online Booking and Scheduling Plugin WordPress plugin before 20.3.1 does not escape the Staff Full Name field before outputting it back in a page, which could lead to a Stored Cross-Site Scripting issue...

5.4CVSS5.9AI score0.00604EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/08 4:37 a.m.11 views

CVE-2024-50656

itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting XSS via the Full Name field in registration.php...

6.1CVSS6AI score0.00336EPSS
Exploits1References1
CVE
CVE
added 2025/02/03 12:0 a.m.83 views

CVE-2024-50656

CVE-2024-50656 affects itsourcecode Placement Management System 1.0. An XSS vulnerability exists in the Full Name field of registration.php. CVSS v3.1 base score is 6.1 (Medium). Exploitation details are not described in the provided documents; remediation/fixes are not specified in the supplied ...

6.1CVSS6.2AI score0.00336EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2024/12/17 9:15 p.m.5 views

CVE-2024-55056

A stored cross-site scripting XSS vulnerability was identified in Phpgurukul Online Birth Certificate System 1.0 in /user/certificate-form.php via the full name field...

5.4CVSS5.7AI score0.00184EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/17 12:0 a.m.13 views

CVE-2024-55056

A stored cross-site scripting XSS vulnerability was identified in Phpgurukul Online Birth Certificate System 1.0 in /user/certificate-form.php via the full name field...

0.00184EPSS
Exploits1References1
CVE
CVE
added 2024/12/17 12:0 a.m.53 views

CVE-2024-55056

Phpgurukul Online Birth Certificate System 1.0 contains a stored XSS in /user/certificate-form.php via the full name field. The CVE-2024-55056 entry has CVSS v3.1 base score 5.4 (Medium) with AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N. No explicit exploit details or mitigation/vulnerable version informa...

5.4CVSS5.7AI score0.00184EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/10/07 5:15 p.m.4 views

CVE-2024-46300

itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting XSS via the Full Name field in registration.php...

6.1CVSS5.8AI score0.0035EPSS
Exploits1References2
Rows per page
Query Builder