Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2026/02/20 3:46 p.m.5 views

CVE-2025-69324 WordPress NEX-Forms plugin <= 9.1.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Basix NEX-Forms nex-forms-express-wp-form-builder allows Stored XSS.This issue affects NEX-Forms: from n/a through = 9.1.7...

5.3AI score0.00244EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/02/04 11:31 a.m.7 views

WordPress NEX-Forms plugin <= 9.1.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Jarno Vos jrn5151 in WordPress Plugin NEX-Forms versions = 9.1.7...

7.1CVSS5.3AI score0.00244EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-13672

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross- site scripting under certain circumstances. This issue...

6.1CVSS5.9AI score0.00671EPSS
Exploits0References2
OSV
OSV
added 2025/06/28 1:15 a.m.5 views

CVE-2025-36026

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link an...

4.3CVSS5.6AI score0.00138EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.8 views

PT-2024-35690 · Splunk · Splunk Cloud Platform +1

Name of the Vulnerable Software and Affected Versions: Splunk Enterprise versions prior to 9.3.0 Splunk Enterprise versions prior to 9.2.4 Splunk Enterprise versions prior to 9.1.7 Splunk Cloud Platform versions prior to 9.1.2312.206 Description: A low-privileged user without the "admin" or "powe...

4.3CVSS7AI score0.00356EPSS
Exploits0References6
OSV
OSV
added 2024/07/14 1:15 p.m.4 views

CVE-2024-39732

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from different environments that could be obtained by a malicious user. IBM X-Force ID: 295791...

7.5CVSS5.8AI score0.00192EPSS
Exploits0References2
OSV
OSV
added 2022/02/11 4:15 p.m.2 views

UBUNTU-CVE-2020-13672

Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...

6.1CVSS5.7AI score0.00671EPSS
Exploits0References3
NCSC
NCSC
added 2021/04/22 12:0 a.m.3 views

Vulnerability fixed in Drupal

A vulnerability has been fixed in Drupal. An unauthenticated remote malicious party could exploit the vulnerability to execute a Cross-Site Scripting XSS attack. Such an attack can result in the execution of arbitrary script code in the browser used to visit the application. For this vulnerabilit...

6.3AI score
Exploits0
Circl
Circl
added 2008/08/18 12:0 a.m.4 views

CVE-2008-3917

creationtimestamp| type| source ---|---|--- 2008-08-18 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32272...

4.3CVSS5.8AI score0.01507EPSS
Exploits0References1
Rows per page
Query Builder