CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

248 matches found

Vulnrichment•added 2025/10/24 6:0 a.m.•2 views

CVE-2025-9158 Stored XSS in Request Tracker

The Request Tracker software is vulnerable to a Stored XSS vulnerability in calendar invitation parsing feature, which displays invitation data without HTML sanitization. XSS vulnerability allows an attacker to send a specifically crafted e-mail enabling JavaScript code execution by displaying th...

5.3CVSS6.2AI score0.0037EPSS

Exploits0References2

Tenable Nessus•added 2025/10/24 12:0 a.m.•4 views

FreeBSD : RT -- XSS via calendar invitations (269c2de7-afaa-11f0-b4c8-792b26d8a051)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 269c2de7-afaa-11f0-b4c8-792b26d8a051 advisory. Mateusz Szymaniec and CERT Polska Reports: RT is vulnerable to XSS via calendar invitations added to a...

5.3CVSS5.5AI score0.0037EPSS

Exploits0References3

FreeBSD•added 2025/10/23 12:0 a.m.•5 views

RT -- XSS via calendar invitations

Mateusz Szymaniec and CERT Polska Reports: RT is vulnerable to XSS via calendar invitations added to a ticket. Thanks to Mateusz Szymaniec and CERT Polska for reporting this finding...

5.3CVSS6.3AI score0.0037EPSS

Exploits0References1

Debian•added 2025/10/22 8:43 p.m.•9 views

[SECURITY] [DSA 6031-1] request-tracker5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6031-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 22, 2025 https://www.debian.org/security/faq -...

5.3CVSS7.1AI score0.0037EPSS

Exploits0

Vulnrichment•added 2025/10/16 8:55 a.m.•1 views

CVE-2025-54461

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user...

6.9CVSS5.5AI score0.00296EPSS

Exploits0References2

EUVD•added 2025/10/16 8:55 a.m.•3 views

EUVD-2025-34738

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user...

6.9CVSS6.4AI score0.00296EPSS

Exploits0References5

CNNVD•added 2025/10/16 12:0 a.m.•2 views

ChatLuck 安全漏洞

ChatLuck is an enterprise internal and external communication software from ChatLuck Japan. A security vulnerability exists in ChatLuck that stems from insufficient access control granularity when inviting guest users, which could result in uninvited guest users registering as guest users...

6.9CVSS5.6AI score0.00296EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-4524

Malware in sbrugna...

4.3CVSS6.3AI score0.01637EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-10007

Malware in sbrugna...

7.5CVSS7.5AI score0.00717EPSS

Exploits0References2