CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/05/23 9:32 a.m.•5 views

CVE-2024-0758

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

6.1CVSS6AI score0.03694EPSS

Exploits0References1

Veracode•added 2024/01/23 5:14 a.m.•11 views

Cross-Site Scripting (XSS)

MolecularFaces is vulnerable to Cross Site Scripting XSS. The vulnerability is caused due to improper handling of user input within the viewer plugin implementation of . This allows an attacker to inject arbitrary JavaScript code into the client browser by crafting malicious molfiles...

6.1CVSS6.4AI score0.03694EPSS

Exploits0References4Affected Software1

NVD•added 2024/01/19 9:15 p.m.•8 views

CVE-2024-0758

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

6.1CVSS6.2AI score0.03694EPSS

Exploits0References3

OSV•added 2024/01/19 9:15 p.m.•8 views

CVE-2024-0758

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

6.1CVSS6AI score

Exploits0References3

Prion•added 2024/01/19 9:15 p.m.•14 views

Cross site scripting

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

5.8CVSS6.9AI score0.03694EPSS

Exploits0References3Affected Software1

CVE•added 2024/01/19 8:19 p.m.•42 views

CVE-2024-0758

MolecularFaces before 0.3.0 is vulnerable to Cross-Site Scripting (XSS). A remote attacker can inject arbitrary JavaScript into a victim’s browser by crafting malicious molfiles, leveraging improper handling of user input in the viewer component. Affected version range is prior to 0.3.0; exploit ...

6.1CVSS5.9AI score0.03694EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/01/19 8:19 p.m.•5 views

CVE-2024-0758 MolecularFaces XSS

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

5.9AI score0.03694EPSS

Exploits0References3

Cvelist•added 2024/01/19 8:19 p.m.•17 views

CVE-2024-0758 MolecularFaces XSS

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles...

6.3AI score0.03694EPSS

Exploits0References3

CNNVD•added 2024/01/19 12:0 a.m.•1 views

MolecularFaces Cross-Site Scripting Vulnerability

MolecularFaces is a collection of reusable UI components for Java Server Faces JSF from the IPB Halle Institute. A security vulnerability exists in versions of MolecularFaces prior to 0.3.0 that stems from vulnerability to cross-site scripting attacks, which allow remote attackers to execute...

6.1CVSS6.5AI score0.03694EPSS

Exploits0References5

Positive Technologies•added 2021/04/16 12:0 a.m.•4 views

PT-2021-24349 · Unknown · Molecularfaces

Name of the Vulnerable Software and Affected Versions: MolecularFaces versions prior to 0.3.0 Description: The issue allows a remote attacker to execute arbitrary JavaScript in the context of a victim browser via crafted molfiles. This is due to the viewer plugin implementation of rendering molfi...

6.1CVSS6.5AI score0.03694EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by