CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/11 6:31 p.m.•8 views

EUVD-2025-209767

A reflected cross-site scripted XSS vulnerability in the dfm-menumaintenance.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

6.1CVSS6AI score0.00031EPSS

NVD•added 2026/05/11 4:17 p.m.•7 views

CVE-2025-61308

NVD•added 2026/05/11 4:17 p.m.•11 views

CVE-2025-61309

A reflected cross-site scripted XSS vulnerability in the dfm-menudepartments.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

NVD•added 2026/05/11 4:17 p.m.•9 views

CVE-2025-61310

A reflected cross-site scripted XSS vulnerability in the acc-menubillings.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

NVD•added 2026/05/11 4:17 p.m.•7 views

CVE-2025-61314

A reflected cross-site scripted XSS vulnerability in the dfm-menuorderopt.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

7.3CVSS0.00031EPSS

NVD•added 2026/05/11 4:17 p.m.•6 views

CVE-2025-61313

A reflected cross-site scripted XSS vulnerability in the dfm-menumarkeralerts.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

7.3CVSS0.00031EPSS

NVD•added 2026/05/11 4:17 p.m.•5 views

CVE-2025-61306

A reflected cross-site scripted XSS vulnerability in the dfm-menucoveragealerts.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable valu...

NVD•added 2026/05/11 4:17 p.m.•5 views

CVE-2025-61307

A reflected cross-site scripted XSS vulnerability in the acc-menupapers.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

CNNVD•added 2026/05/11 12:0 a.m.•5 views

docuForm FSM Server 跨站脚本漏洞

The docuForm FSM Server is a server-side system developed by the German company docuForm, designed for enterprise document processing and form workflow management. The version 11.11c of the docuForm FSM Server contains a cross-site scripting vulnerability. This vulnerability originates from the...

6.1CVSS5.9AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2026/05/11 12:0 a.m.•4 views

CVE-2025-61309

Cvelist•added 2026/05/11 12:0 a.m.•30 views

CVE-2025-61311

A reflected cross-site scripted XSS vulnerability in the dfm-menualerts.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...

0.00031EPSS

Cvelist•added 2026/05/11 12:0 a.m.•30 views

CVE-2025-61309

0.00031EPSS

Cvelist•added 2026/05/11 12:0 a.m.•28 views

CVE-2025-61305

0.00031EPSS

Vulnrichment•added 2026/05/11 12:0 a.m.•3 views

CVE-2025-61313

Positive Technologies•added 2026/05/11 12:0 a.m.•6 views

PT-2026-39603

A reflected cross-site scripted XSS vulnerability in the dfm-menu coveragealerts.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable val...

Vulnrichment•added 2026/05/11 12:0 a.m.•6 views

CVE-2025-61306

Positive Technologies•added 2026/05/11 12:0 a.m.•6 views

PT-2026-39611

Name of the Vulnerable Software and Affected Versions docuForm version 11.11c Description A reflected cross-site scripting XSS issue exists in the 'dfm-menu orderopt.php' component. This allows attackers to execute arbitrary JavaScript in a user's browser by injecting a crafted payload into an...

7.3CVSS5.9AI score0.00031EPSS

Exploits0References6

Vulnrichment•added 2026/05/11 12:0 a.m.•5 views

CVE-2025-61310

Positive Technologies•added 2026/05/11 12:0 a.m.•6 views

PT-2026-39608

A reflected cross-site scripted XSS vulnerability in the dfm-menu alerts.php component of GmbH Mecury Managed Print Services docuForm v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injecting a crafted payload into an unfiltered variable value...