Lucene search
+L

91 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-2198

Malware in sbrugna...

4.3CVSS6.4AI score0.01065EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-10401

Malware in sbrugna...

8.8CVSS8.7AI score0.00887EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2003-1286

Malware in sbrugna...

5CVSS6.4AI score0.01259EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2006-0157

Malware in sbrugna...

6.1CVSS6.4AI score0.00772EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2003-0760

Malware in sbrugna...

4.3CVSS6.4AI score0.0341EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-53134

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00392EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-1765

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00796EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-39790

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00508EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-35136

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00876EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28010

Malicious code in bioql PyPI...

2.1CVSS6.3AI score0.00189EPSS
Exploits0References8
NVD
NVD
added 2025/10/02 11:15 a.m.5 views

CVE-2025-40989

Stored Cross Site Scripting vulnerability in Ekushey CRM v5.0 by Creativeitem, due to lack of proper validation of user inputs via the "/ekushey/index.php/client/projectmessage/add/xxx", affecting to "message" parameter via POST. This vulnerability could allow a remote attacker to send a speciall...

5.4CVSS0.00193EPSS
Exploits0References1
Veracode
Veracode
added 2025/09/15 8:1 a.m.6 views

Cross-Site Scripting (Reflected XSS)

com.liferay, com.liferay.layout.taglib is vulnerable to reflected cross-site scripting XSS. The vulnerability is due to improper validation of the embedded message field in the form container, which allows an attacker to inject and execute arbitrary JavaScript in a victim’s browser...

2.1CVSS6.6AI score0.00189EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-7335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view 'log' as it insecurely prints the 'Lo...

6.1CVSS7AI score0.00873EPSS
Exploits1References2
OSV
OSV
added 2025/08/22 12:30 a.m.6 views

GHSA-R367-Q549-PGR5 Liferay Portal Reflected Cross-Site Scripting Vulnerability via Form Container

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 update 32 through update ...

2.1CVSS5.6AI score0.00189EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2025/08/22 12:30 a.m.9 views

Liferay Portal Reflected Cross-Site Scripting Vulnerability via Form Container

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 update 32 through update ...

5.4CVSS5.6AI score0.00189EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/21 10:23 p.m.2 views

CVE-2025-43753

A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 update 32 through update ...

2.1CVSS5.7AI score0.00189EPSS
Exploits0References1
CVE
CVE
added 2025/08/21 10:23 p.m.22 views

CVE-2025-43753

The CVE-2025-43753 entry describes a reflected XSS in Liferay products where a remote authenticated user can inject JavaScript into the embedded message field from the form container. Affected products include: Liferay Portal 7.4.3.32–7.4.3.132 and Liferay DXP 2025.Q1.0–2025.Q1.7 , plus older qua...

5.4CVSS5.7AI score0.00189EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.7 views

PT-2025-34313 · Liferay · Liferay Portal +1

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.4.3.32 through 7.4.3.132 Liferay DXP versions 2025.Q1.0 through 2025.Q1.7 Liferay DXP versions 2024.Q4.0 through 2024.Q4.7 Liferay DXP versions 2024.Q3.1 through 2024.Q3.13 Liferay DXP versions 2024.Q2.1 through...

2.1CVSS5.2AI score0.00189EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2025/05/23 2:43 a.m.8 views

CVE-2023-30321

Cross Site Scripting XSS vulnerability in textMessage field in /src/chatbotapp/LoginServlet.java in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code...

9CVSS6.4AI score0.00939EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:14 p.m.6 views

CVE-2022-37137

PayMoney 3.3 is vulnerable to Stored Cross-Site Scripting XSS during replying the ticket. The XSS can be obtain from injecting under "Message" field with "description" parameter with the specially crafted payload to gain Stored XSS. The XSS then will prompt after that or can be access from the vi...

5.4CVSS5.4AI score0.00508EPSS
Exploits2References1
Rows per page
Query Builder