CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6573 matches found

Prion•added 2022/03/04 2:15 p.m.•16 views

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.3.3...

3.5CVSS5.2AI score0.6662EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/03/04 1:35 p.m.•18 views

CVE-2022-0831 Cross-site Scripting (XSS) - Stored in pimcore/pimcore

Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.3.3...

4.6CVSS5.5AI score0.01266EPSS

Exploits1References2

NVD•added 2022/03/04 12:15 p.m.•18 views

CVE-2022-0752

Cross-site Scripting XSS - Generic in GitHub repository hestiacp/hestiacp prior to 1.5.9...

6.1CVSS0.00952EPSS

Exploits1References2

Cvelist•added 2022/03/04 11:35 a.m.•27 views

CVE-2022-0752 Cross-site Scripting (XSS) - Generic in hestiacp/hestiacp

Cross-site Scripting XSS - Generic in GitHub repository hestiacp/hestiacp prior to 1.5.9...

3.5CVSS6.2AI score0.00952EPSS

Exploits1References2

Prion•added 2022/03/04 9:15 a.m.•12 views

Command injection

OS Command Injection in GitHub repository part-db/part-db prior to 0.5.11...

10CVSS9.7AI score0.35436EPSS

Exploits5References3Affected Software1

OSV•added 2022/03/04 8:25 a.m.•24 views

CVE-2022-0848 OS Command Injection in part-db/part-db

OS Command Injection in GitHub repository part-db/part-db prior to 0.5.11...

10CVSS9.4AI score0.35436EPSS

Exploits5References5

CVE•added 2022/03/04 8:25 a.m.•109 views

CVE-2022-0848

Summary (CVE-2022-0848): part-db/part-db prior to 0.5.11 is vulnerable to an OS Command Injection via unrestricted file upload, enabling remote code execution on the affected web server. Multiple sources document an RCE exploit and practical PoCs (e.g., packetstorm/huntr/exploit-db) that leverage...

10CVSS9.7AI score0.35436EPSS

Exploits5References3Affected Software1

Prion•added 2022/03/04 8:15 a.m.•12 views

Cross site scripting

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10...

4.3CVSS6AI score0.01077EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/03/04 8:10 a.m.•17 views

CVE-2022-0838 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10...

6.6CVSS6.3AI score0.01077EPSS

Exploits1References2

OSV•added 2022/03/04 8:10 a.m.•14 views

CVE-2022-0838 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.10...

6.6CVSS6.8AI score0.01077EPSS

Exploits1References4

Prion•added 2022/03/03 10:15 p.m.•14 views

Xxe

Improper Restriction of XML External Entity Reference in GitHub repository hazelcast/hazelcast in 5.1-BETA-1...

7.5CVSS9.5AI score0.02792EPSS

Exploits2References2Affected Software1

Cvelist•added 2022/03/03 9:40 p.m.•24 views

CVE-2022-0265 Improper Restriction of XML External Entity Reference in hazelcast/hazelcast

Improper Restriction of XML External Entity Reference in GitHub repository hazelcast/hazelcast in 5.1-BETA-1...

7.3CVSS9.8AI score0.02792EPSS

Exploits2References2

ATTACKERKB•added 2022/03/03 4:15 p.m.•2 views

CVE-2022-0753

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.9...

6.1CVSS5.4AI score0.00821EPSS

Exploits1References3

NVD•added 2022/03/03 4:15 p.m.•27 views

CVE-2022-0753

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.9...

6.1CVSS0.00821EPSS

Exploits1References2

Prion•added 2022/03/03 4:15 p.m.•12 views

Command injection

OS Command Injection in GitHub repository ljharb/npm-lockfile in v2.0.3 and v2.0.4...

10CVSS9.8AI score0.02675EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/03/03 3:50 p.m.•29 views

CVE-2022-0841 OS Command Injection in ljharb/npm-lockfile

OS Command Injection in GitHub repository ljharb/npm-lockfile in v2.0.3 and v2.0.4...

3.8CVSS10AI score0.02675EPSS

Exploits1References2

Cvelist•added 2022/03/03 3:30 p.m.•24 views

CVE-2022-0753 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.9...

3.5CVSS6.3AI score0.00821EPSS

Exploits1References2

OSV•added 2022/03/03 3:30 p.m.•19 views

CVE-2022-0753 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp

Cross-site Scripting XSS - Reflected in GitHub repository hestiacp/hestiacp prior to 1.5.9...

3.5CVSS4.6AI score0.00821EPSS

Exploits1References4

Cvelist•added 2022/03/03 7:0 a.m.•37 views

CVE-2022-0528 Server-Side Request Forgery (SSRF) in transloadit/uppy

Server-Side Request Forgery SSRF in GitHub repository transloadit/uppy prior to 3.3.1...

6.5CVSS7.8AI score0.00963EPSS

Exploits1References2

NVD•added 2022/03/02 4:15 p.m.•6 views

CVE-2022-0819

Code Injection in GitHub repository dolibarr/dolibarr prior to 15.0.1...

8.8CVSS0.43578EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by