CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5954 matches found

OSV•added 2024/06/14 2:0 p.m.•36 views

RLSA-2024:2888 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.11.0. Security Fixes: firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox: Potential...

8.8CVSS8.5AI score0.72648EPSS

Exploits18References7

Rockylinux•added 2024/06/14 1:59 p.m.•22 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. This updat...

8.8CVSS8.1AI score0.72648EPSS

Exploits18

OSV•added 2024/06/14 1:59 p.m.•25 views

RLSA-2024:3783 Moderate: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 115.11.0 ESR. Security Fixes: firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsi...

8.8CVSS8.6AI score0.72648EPSS

Exploits18References7

Rockylinux•added 2024/06/14 1:59 p.m.•22 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

8.8CVSS8.1AI score0.72648EPSS

Exploits18

CNVD•added 2024/06/14 12:0 a.m.•8 views

Adobe Commerce Cross-Site Scripting Vulnerability (CNVD-2024-28955)

Adobe Commerce is the United States of America Odobie Adobe company's a business and brand-oriented global leader in digital commerce solutions. A cross-site scripting vulnerability exists in Adobe Commerce, which can be exploited by an attacker to inject malicious script into vulnerable form...

4.8CVSS5.9AI score0.0067EPSS

Exploits0References1

Positive Technologies•added 2024/06/14 12:0 a.m.•6 views

PT-2024-27812 · Ckeditor · Ckeditor Open Link Plugin

Name of the Vulnerable Software and Affected Versions: CKEditor Open Link plugin versions prior to 1.0.5 Description: The issue allows execution of JavaScript code by abusing the link href attribute. It affects users of the Open Link plugin. Recommendations: For versions prior to 1.0.5, update to...

6.1CVSS7.5AI score0.00856EPSS

Exploits0References6

OSV•added 2024/06/13 8:16 a.m.•3 views

CVE-2024-36238

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS6.1AI score0.00289EPSS

Exploits0References1

NVD•added 2024/06/13 8:16 a.m.•32 views

CVE-2024-36238

5.4CVSS0.00289EPSS

Exploits0References1

OSV•added 2024/06/13 8:16 a.m.•3 views

CVE-2024-36234

5.4CVSS6.1AI score

Exploits0References1

OSV•added 2024/06/13 8:16 a.m.•1 views

CVE-2024-36222

5.4CVSS6.1AI score

Exploits0References1

NVD•added 2024/06/13 8:16 a.m.•35 views

CVE-2024-36219

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS0.00313EPSS

Exploits0References1

NVD•added 2024/06/13 8:16 a.m.•23 views

CVE-2024-36209

5.4CVSS0.0052EPSS

Exploits0References1

OSV•added 2024/06/13 8:16 a.m.•2 views

CVE-2024-36151

Adobe Experience Manager versions 6.5.20 and earlier Answer: are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue requires user...

5.4CVSS6AI score0.00717EPSS

Exploits0References1

NVD•added 2024/06/13 8:16 a.m.•23 views

CVE-2024-36150

5.4CVSS0.00717EPSS

Exploits0References1

NVD•added 2024/06/13 8:16 a.m.•23 views

CVE-2024-36141

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00775EPSS

Exploits0References1

OSV•added 2024/06/13 8:15 a.m.•2 views

CVE-2024-26095

5.4CVSS5.8AI score0.00717EPSS

Exploits0References1

NVD•added 2024/06/13 8:15 a.m.•18 views

CVE-2024-26078

5.4CVSS0.00676EPSS

Exploits0References1

OSV•added 2024/06/13 8:15 a.m.•2 views

CVE-2024-26057

5.4CVSS6.1AI score0.00643EPSS

Exploits0References1

NVD•added 2024/06/13 8:15 a.m.•15 views

CVE-2024-26036

5.4CVSS0.0051EPSS

Exploits0References1

CVE•added 2024/06/13 7:53 a.m.•52 views

CVE-2024-36213

CVE-2024-36213 affects Adobe Experience Manager (AEM) versions 6.5.20 and earlier. The vulnerability is a stored cross-site scripting (XSS) flaw in vulnerable form fields, allowing an attacker to inject malicious scripts that execute in a victim’s browser when visiting a page containing the field...

5.4CVSS5.3AI score0.00385EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by