CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

6574 matches found

Positive Technologies•added 2023/07/14 12:0 a.m.•3 views

PT-2023-25676 · Froxlor · Froxlor

Name of the Vulnerable Software and Affected Versions: froxlor versions prior to 2.0.21 Description: The issue is related to improper encoding or escaping of output in the GitHub repository froxlor/froxlor. Recommendations: For versions prior to 2.0.21, update to version 2.0.21 or later to resolv...

9.1CVSS7.9AI score0.00835EPSS

Exploits1References9

Veracode•added 2023/07/12 9:34 a.m.•17 views

Cross-Site Scripting (XSS)

github.com/mlogclub/bbs-go is vulnerable to Cross-Site Scripting XSS attacks. The library does not properly escape the special characters before it output to the front end, allowing an attacker to inject and execute malicious javascript on victim's browser via a crafted payload to the comment...

5.4CVSS6AI score0.00639EPSS

Exploits1References6Affected Software1

OSV•added 2023/07/11 4:8 p.m.•19 views

CVE-2023-3627 Cross-Site Request Forgery (CSRF) in salesagility/suitecrm-core

Cross-Site Request Forgery CSRF in GitHub repository salesagility/suitecrm-core prior to 8.3.1...

8.1CVSS8.2AI score0.00302EPSS

Exploits1References4

Vulnrichment•added 2023/07/11 4:8 p.m.•11 views

CVE-2023-3627 Cross-Site Request Forgery (CSRF) in salesagility/suitecrm-core

Cross-Site Request Forgery CSRF in GitHub repository salesagility/suitecrm-core prior to 8.3.1...

8.1CVSS7AI score0.00302EPSS

Exploits1References2

Cvelist•added 2023/07/11 4:8 p.m.•22 views

CVE-2023-3627 Cross-Site Request Forgery (CSRF) in salesagility/suitecrm-core

Cross-Site Request Forgery CSRF in GitHub repository salesagility/suitecrm-core prior to 8.3.1...

8.1CVSS9.1AI score0.00302EPSS

Exploits1References2

OSV•added 2023/07/11 3:31 p.m.•32 views

GHSA-F44M-65H3-99VC tarteaucitron.js vulnerable to Cross-site Scripting

Cross-site Scripting XSS - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1...

4.6CVSS4.9AI score0.00469EPSS

Exploits1References5

Github Security Blog•added 2023/07/11 3:31 p.m.•19 views

tarteaucitron.js vulnerable to Cross-site Scripting

Cross-site Scripting XSS - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1...

5.4CVSS6.1AI score0.00469EPSS

Exploits1References5Affected Software1

Prion•added 2023/07/11 3:15 p.m.•16 views

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1...

4.9CVSS5.3AI score0.00469EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/07/11 2:55 p.m.•23 views

CVE-2023-3620 Cross-site Scripting (XSS) - Stored in amauric/tarteaucitron.js

Cross-site Scripting XSS - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1...

4.6CVSS5.5AI score0.00469EPSS

Exploits1References2

OSV•added 2023/07/11 2:55 p.m.•10 views

CVE-2023-3620 Cross-site Scripting (XSS) - Stored in amauric/tarteaucitron.js

Cross-site Scripting XSS - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1...

4.6CVSS5.3AI score0.00469EPSS

Exploits1References4

OSV•added 2023/07/11 12:0 p.m.•2 views

RUSTSEC-2023-0089 atomic-polyfill is unmaintained

The author has archived the GitHub repository and mentions deprecation in project's README. Possible alternatives portable-atomic...

Exploits0References3

Github Security Blog•added 2023/07/10 6:30 p.m.•24 views

TeamPass Cross-site Scripting vulnerability

Cross-site Scripting XSS - Generic in GitHub repository nilsteampassnet/teampass prior to 3.0.10...

5.4CVSS6.3AI score0.00526EPSS

Exploits1References4Affected Software1

NVD•added 2023/07/10 4:15 p.m.•22 views

CVE-2023-3580

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

5.4CVSS4.8AI score0.00521EPSS

Exploits1References2

NVD•added 2023/07/10 4:15 p.m.•26 views

CVE-2023-3565

Cross-site Scripting XSS - Generic in GitHub repository nilsteampassnet/teampass prior to 3.0.10...

5.4CVSS5.1AI score0.00526EPSS

Exploits1References2

Prion•added 2023/07/10 4:15 p.m.•19 views

Input validation

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

5.5CVSS4.6AI score0.00521EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2023/07/10 11:38 a.m.•6 views

CVE-2023-3580 Improper Handling of Additional Special Element in squidex/squidex

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

5.4CVSS6.8AI score0.00521EPSS

Exploits1References2

Cvelist•added 2023/07/10 11:38 a.m.•26 views

CVE-2023-3580 Improper Handling of Additional Special Element in squidex/squidex

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

5.4CVSS5AI score0.00521EPSS

Exploits1References2

OSV•added 2023/07/10 11:38 a.m.•22 views

CVE-2023-3580 Improper Handling of Additional Special Element in squidex/squidex

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

5.4CVSS5.1AI score0.00521EPSS

Exploits1References4

Vulnrichment•added 2023/07/10 8:48 a.m.•10 views

CVE-2023-3574 Improper Authorization in pimcore/customer-data-framework

Improper Authorization in GitHub repository pimcore/customer-data-framework prior to 3.4.1...

6.3CVSS6.8AI score0.00444EPSS

Exploits1References2

Cvelist•added 2023/07/10 8:48 a.m.•18 views

CVE-2023-3574 Improper Authorization in pimcore/customer-data-framework

Improper Authorization in GitHub repository pimcore/customer-data-framework prior to 3.4.1...

6.3CVSS6.7AI score0.00444EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by