CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

831 matches found

CNNVD•added 2023/12/05 12:0 a.m.•1 views

Huawei HarmonyOS Security Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from an override vulnerability in the card management module. Successful exploitation of thi...

7.5CVSS7.5AI score0.00095EPSS

Exploits0References4

CNNVD•added 2023/12/05 12:0 a.m.•1 views

Huawei HarmonyOS Security Vulnerability

7.5CVSS7.5AI score0.00095EPSS

Exploits0References4

OSV•added 2023/11/28 2:15 a.m.•10 views

CVE-2023-47503

An issue in jflyfox jfinalCMS v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp component in the template management module...

9.8CVSS7.8AI score

Exploits0References1

NVD•added 2023/11/28 2:15 a.m.•9 views

CVE-2023-47503

An issue in jflyfox jfinalCMS v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp component in the template management module...

9.8CVSS0.01289EPSS

Exploits1References1

CVE•added 2023/11/08 10:12 a.m.•57 views

CVE-2023-46756

CVE-2023-46756 describes a permission-control flaw in Huawei HarmonyOS/EMUI’s window management module that can lead to malicious pop-up windows. Documented impact: privilege-control weakness with potential UI disruption; no concrete exploit details, affected versions, or remediation information ...

5.3CVSS5.2AI score0.00086EPSS

Exploits0References2Affected Software1

OSV•added 2023/11/08 9:15 a.m.•3 views

CVE-2023-44098

Vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service confidentiality...

7.5CVSS5.8AI score0.0007EPSS

Exploits0References2

Positive Technologies•added 2023/11/08 12:0 a.m.•3 views

PT-2023-29098 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service...

7.5CVSS7AI score0.0007EPSS

Exploits0References5

CNVD•added 2023/11/06 12:0 a.m.•5 views

Huawei HarmonyOS and EMUI Information Disclosure Vulnerability (CNVD-2023-88962)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. Huawei HarmonyOS and EMUI have an information disclosu...

7.5CVSS6.2AI score0.0007EPSS

Exploits0References1

CNNVD•added 2023/11/02 12:0 a.m.•2 views

Huawei HarmonyOS 信息泄露漏洞

7.5CVSS6AI score0.0007EPSS

Exploits0References3

BDU FSTEC•added 2023/10/17 12:0 a.m.•1 views

The vulnerability of the WS_FTP Server server control module allows attackers to perform cross-site scripting attacks.

The vulnerability of the WSFTP Server server management module is related to the lack of measures taken to protect the website structure when processing SSL certificate parameters. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

8.3CVSS6.5AI score0.00021EPSS

Exploits0References4Affected Software1

OSV•added 2023/09/27 3:18 p.m.•2 views

CVE-2023-40047

In WSFTP Server version prior to 8.8.2, a stored cross-site scripting XSS vulnerability exists in WSFTP Server's Management module. An attacker with administrative privileges could import a SSL certificate with malicious attributes containing cross-site scripting payloads. Once the cross-site...

4.8CVSS5.8AI score0.00021EPSS

Exploits0References2

OSV•added 2023/09/27 3:16 p.m.•1 views

CVE-2022-48606

Stability-related vulnerability in the binder background management and control module. Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score0.00214EPSS

Exploits0References2

Cvelist•added 2023/09/27 2:50 p.m.•23 views

CVE-2023-40047 WS_FTP Server Stored Cross-Site Scripting Vulnerability

8.3CVSS7.4AI score0.00021EPSS

Exploits0References2

OSV•added 2023/09/25 1:15 p.m.•1 views

CVE-2023-41293

Data security classification vulnerability in the DDMP module. Successful exploitation of this vulnerability may affect confidentiality...

7.5CVSS5.8AI score0.0015EPSS

Exploits0References2

OSV•added 2023/09/25 11:15 a.m.•2 views

CVE-2023-39409

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart...

7.5CVSS5.8AI score0.00134EPSS

Exploits0References2

OSV•added 2023/08/13 1:15 p.m.•1 views

CVE-2023-39404

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart...

7.5CVSS5.8AI score

Exploits0References2

CNNVD•added 2023/08/05 12:0 a.m.•3 views

Huawei HarmonyOS 输入验证错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A denial of service vulnerability exists in Huawei HarmonyOS, which stems from incorrect validation of user input in the window management module, and can be...

7.5CVSS6.6AI score0.00096EPSS

Exploits0References5

CNNVD•added 2023/08/05 12:0 a.m.•2 views

Huawei HarmonyOS 输入验证错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an input validation error vulnerability, which stems from the PMS module's lax validation of input parameters, and can be...

7.5CVSS6.8AI score0.00096EPSS

Exploits0References4

CNVD•added 2023/07/10 12:0 a.m.•4 views

EyouCms Cross-Site Scripting Vulnerability (CNVD-2023-58096)

EyouCms is an open source content management system CMS based on ThinkPHP. EyouCms has a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the Column management module, which can be exploited by an attacker to execute arbitrar...

5.4CVSS6.2AI score0.00104EPSS

Exploits1References1

Cvelist•added 2023/07/06 12:0 a.m.•10 views

CVE-2023-37133

A stored cross-site scripting XSS vulnerability in the Column management module of eyoucms v1.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5.4AI score0.00104EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by