CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

20 matches found

RedhatCVE•added 2026/01/09 12:31 p.m.•7 views

CVE-2023-40817

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field...

6.1CVSS6.9AI score0.00463EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:29 p.m.•6 views

CVE-2023-40812

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...

6.1CVSS6.9AI score0.00463EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:29 p.m.•2 views

CVE-2023-40816

OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...

6.1CVSS6.9AI score0.00463EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:28 p.m.•4 views

CVE-2023-40809

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number...

6.1CVSS6.9AI score0.00463EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-2111

Malware in sbrugna...

6.1CVSS6.3AI score0.00838EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-7113

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.02422EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-2861

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00463EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-2975

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00463EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-3017

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00463EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-2934

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00463EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 5:3 a.m.•7 views

CVE-2023-27151

openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number in the Saved Search Activity via the Name, Description, or Activity Number field...

6.1CVSS7.5AI score0.00454EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 4:14 a.m.•5 views

CVE-2023-40810

OpenCRX version 5.2.0 is vulnerable to HTML injection via Product Name Field...

6.1CVSS6.9AI score0.00463EPSS

RedhatCVE•added 2025/05/23 12:38 a.m.•7 views

CVE-2022-40084

OpenCRX before v5.2.2 was discovered to be vulnerable to password enumeration due to the difference in error messages received during a password reset which could enable an attacker to determine if a username, email or ID is valid...

5.3CVSS7.2AI score0.00634EPSS

Exploits1References1

ATTACKERKB•added 2023/11/18 4:15 a.m.•1 views

CVE-2023-40809

OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number...

6.1CVSS6.3AI score0.00463EPSS

Exploits1References2

Prion•added 2023/11/18 4:15 a.m.•10 views

Design/Logic Flaw

OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation...

5.8CVSS7.2AI score0.00463EPSS

Exploits1References1Affected Software1

CNNVD•added 2023/11/18 12:0 a.m.•2 views

OpenCRX Security Vulnerabilities

openCRX is an open source Crm software. A security vulnerability exists in OpenCRX version 5.2.0, which originated from a vulnerability that allows attackers to conduct HTML injection attacks via the component Activity Search Criteria-Activity Number...

6.1CVSS7AI score0.00463EPSS

Exploits1References2

Vulnrichment•added 2022/10/20 12:0 a.m.•6 views

CVE-2022-40084

OpenCRX before v5.2.2 was discovered to be vulnerable to password enumeration due to the difference in error messages received during a password reset which could enable an attacker to determine if a username, email or ID is valid...

5.3AI score0.00634EPSS

Exploits1References2

Positive Technologies•added 2022/10/20 12:0 a.m.•2 views

PT-2022-25192 · Opencrx · Opencrx

Name of the Vulnerable Software and Affected Versions: OpenCRX versions prior to 5.2.2 Description: The issue allows an attacker to determine if a username, email, or ID is valid due to the difference in error messages received during a password reset. This is a result of password enumeration...

5.3CVSS5.1AI score0.02422EPSS

Exploits1References8

OSV•added 2021/09/29 2:15 p.m.•10 views

CVE-2021-25959

In OpenCRX, versions v4.0.0 through v5.1.0 are vulnerable to reflected Cross-site Scripting XSS, due to unsanitized parameters in the password reset functionality. This allows execution of external javascript files on any user of the openCRX instance...

6.1CVSS6.3AI score0.00838EPSS

Exploits0References2

CNNVD•added 2021/09/29 12:0 a.m.•3 views

OpenCrx 跨站脚本漏洞

OpenCrx is an open source Crm software. A cross-site scripting vulnerability exists in OpenCRX, which stems from the fact that versions v4.0.0 through v5.1.0 are vulnerable to Reflected Cross-Site Scripting XSS in OpenCRX due to uncleaned parameters in the password reset function. This allows...

6.1CVSS6.1AI score0.00838EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by