CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

Cvelist•added 2024/04/17 12:0 a.m.•15 views

CVE-2024-32345

A cross-site scripting XSS vulnerability in the Settings menu of CMSimple v5.15 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Configuration parameter under the Language section...

5.7AI score0.00456EPSS

Exploits1References1

Vulnrichment•added 2024/04/17 12:0 a.m.•11 views

CVE-2024-32344

5.8AI score0.00528EPSS

Exploits1References1

Positive Technologies•added 2024/04/17 12:0 a.m.•4 views

PT-2024-24523 · Cmsimple · Cmsimple

Name of the Vulnerable Software and Affected Versions: CMSimple version 5.15 Description: A cross-site scripting XSS vulnerability in the Settings menu allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit parameter under the Language section...

6.8CVSS6AI score0.00528EPSS

Exploits1References7

CVE•added 2018/06/08 1:0 a.m.•44 views

CVE-2018-9182

Twonky Server before 8.5.1 is affected by a cross‑site scripting (XSS) vulnerability exposed via a modified "language" parameter in the Language section. The issue stems from improper handling of the language parameter, enabling XSS payloads. Impact is consistent with XSS (partial integrity impac...

6.1CVSS5.8AI score0.0138EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/06/08 1:0 a.m.•14 views

CVE-2018-9182

Twonky Server before 8.5.1 has XSS via a modified "language" parameter in the Language section...

6AI score0.0138EPSS

Exploits1References1

Rows per page