CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

RedhatCVE•added 2026/02/03 3:18 p.m.•7 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.4AI score0.00235EPSS

Exploits1References1

OSV•added 2026/02/03 12:30 a.m.•7 views

GHSA-G7HJ-29XQ-R64W Tendenci CMS Contains a Cross-site Scripting Vulnerability in its Jobs Module

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.6AI score0.00235EPSS

Exploits1References4

Github Security Blog•added 2026/02/03 12:30 a.m.•6 views

Tendenci CMS Contains a Cross-site Scripting Vulnerability in its Jobs Module

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.6AI score0.00235EPSS

Exploits1References4Affected Software1

PyPA•added 2026/02/02 11:16 p.m.•7 views

PYSEC-2026-137

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.9AI score0.00235EPSS

Exploits1References2Affected Software1

NVD•added 2026/02/02 11:16 p.m.•6 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS0.00235EPSS

Exploits1References1

OSV•added 2026/02/02 11:16 p.m.•8 views

PYSEC-2026-137

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.9AI score0.00235EPSS

Exploits1References2

OSV•added 2026/02/02 11:16 p.m.•4 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4CVSS5.5AI score

Exploits0References1

Cvelist•added 2026/02/02 12:0 a.m.•29 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

0.00235EPSS

Exploits1References1

Vulnrichment•added 2026/02/02 12:0 a.m.•3 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4AI score0.00235EPSS

Exploits1References1

ATTACKERKB•added 2026/02/02 12:0 a.m.•5 views

CVE-2025-70959

A stored cross-site scripting XSS vulnerability in the Jobs module of Tendenci CMS v15.3.7 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload...

5.4AI score0.00235EPSS

Exploits1References2

CNNVD•added 2026/02/02 12:0 a.m.•7 views

Tendenci 安全漏洞

Tendenci is a membership management software developed by Tendenci Inc. in the United States, primarily used by non-profit organizations and associations. This software supports functions such as member management, content management, event management, and online donation management. Version 15.3...

5.4CVSS5.8AI score0.00235EPSS

Exploits1References2

Positive Technologies•added 2026/02/02 12:0 a.m.•7 views

PT-2026-5705

Name of the Vulnerable Software and Affected Versions Tendenci CMS version 15.3.7 Description A stored cross-site scripting XSS issue exists in the Jobs module. This allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload. Recommendations Update to a newer version...

5.4CVSS5.4AI score0.00235EPSS

Exploits1References6

CVE•added 2026/02/02 12:0 a.m.•16 views

CVE-2025-70959

The CVE-2025-70959 issue affects Tendenci CMS, specifically the Jobs module in version v15.3.7, where a stored XSS vulnerability allows attackers to inject crafted payloads to execute arbitrary web scripts or HTML. The underlying impact is described as client-side content manipulation with potent...

5.4CVSS5.4AI score0.00235EPSS

Exploits1References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2015-3400

Malware in sbrugna...

6.8CVSS6.4AI score0.00656EPSS

Exploits0References6

CNVD•added 2021/03/17 12:0 a.m.•5 views

Silverstripe CMS Injection Vulnerability

Silverstripe CMS is an application from Silverstripe New Zealand. Empower powerful digital teams by creating a platform for digital change. A security vulnerability exists in Silverstripe CMS versions 3 and 4, which stems from a vulnerability in the symbiote/silverstripe-queuedjobs module that...

6.1CVSS6.7AI score0.00751EPSS

Exploits0References1

Cvelist•added 2015/04/21 4:0 p.m.•21 views

CVE-2015-3355

Multiple cross-site request forgery CSRF vulnerabilities in the Batch Jobs module before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of certain users for requests that 1 delete a batch job record or 2 execute a task via unspecified vectors...

7.4AI score0.00656EPSS

Exploits0References5

NVD•added 2007/04/30 11:19 p.m.•17 views

CVE-2007-2370

SQL injection vulnerability in index.php in the John Mordo Jobs 2.4 and earlier module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a jobsview action. NOTE: the module name was originally reported as Job Listings...

7.5CVSS8.3AI score0.02879EPSS

Exploits0References2

Tenable Nessus•added 2007/04/06 12:0 a.m.•23 views

XOOPS Jobs Module index.php cid Parameter SQL Injection

The remote host is running the Jobs module, a third-party module for XOOPS. The version of this module installed on the remote host fails to properly sanitize user-supplied input to the 'cid' parameter of the 'modules/jobs/index.php' script before using it to build a database query. Regardless of...

7.5CVSS5.6AI score0.02879EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by