CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/06/16 8:15 a.m.•7 views

CVE-2025-4987

Cvelist•added 2025/06/16 7:22 a.m.•10 views

CVE-2025-4987 Stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

CVE•added 2025/06/16 7:22 a.m.•20 views

CVE-2025-4987

CVE-2025-4987 is a stored XSS vulnerability affecting Dassault Systèmes Project Portfolio Manager’s Opportunity Management, affecting 3DEXPERIENCE R2023x–R2025x. The issue stems from a stored Cross-site Scripting flaw that enables an attacker to execute arbitrary script code in a user’s browser s...

Vulnrichment•added 2025/06/16 7:22 a.m.•2 views

CVE-2025-4987 Stored Cross-site Scripting (XSS) vulnerability affecting Opportunity Management in Project Portfolio Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

CNNVD•added 2025/06/16 12:0 a.m.•0 views

Dassault Systèmes Project Portfolio Manager 安全漏洞

Dassault Systèmes Project Portfolio Manager is an application from Dassault Systèmes France. It is responsible for developing and implementing the project portfolio management process. A security vulnerability exists in Dassault Systèmes Project Portfolio Manager that stems from a stored cross-si...

8.7CVSS6.1AI score0.00153EPSS

Exploits0References2

Positive Technologies•added 2025/06/16 12:0 a.m.•0 views

PT-2025-25526 · Unknown · Project Portfolio Manager +1

Name of the Vulnerable Software and Affected Versions: Project Portfolio Manager versions 3DEXPERIENCE R2023x through 3DEXPERIENCE R2025x Description: A stored Cross-site Scripting XSS issue affects Opportunity Management, allowing an attacker to execute arbitrary script code in a user's browser...

8.7CVSS6.3AI score0.00153EPSS

Exploits0References9

RedhatCVE•added 2025/06/01 2:47 p.m.•1 views

CVE-2025-4985

A stored Cross-site Scripting XSS vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00153EPSS

NVD•added 2025/05/30 3:15 p.m.•6 views

CVE-2025-4985

CVE•added 2025/05/30 2:19 p.m.•43 views

CVE-2025-4985

CVE-2025-4985 affects Dassault Systèmes Project Portfolio Manager (Risk Management) across 3DEXPERIENCE R2022x–R2025x, with a stored XSS vulnerability that allows script execution in a user’s browser. The root cause is stored XSS within Risk Management, enabling arbitrary script execution per the...

8.7CVSS7.8AI score0.00153EPSS

Vulnrichment•added 2025/05/30 2:19 p.m.•3 views

CVE-2025-4985 Stored Cross-site Scripting (XSS) vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

Cvelist•added 2025/05/30 2:19 p.m.•10 views

CVE-2025-4985 Stored Cross-site Scripting (XSS) vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

CNNVD•added 2025/05/30 12:0 a.m.•1 views

Dassault Systèmes Project Portfolio Manager 跨站脚本漏洞

Dassault Systèmes Project Portfolio Manager is an application from Dassault Systèmes, France. It is responsible for developing and implementing the project portfolio management process. A cross-site scripting vulnerability exists in Dassault Systèmes Project Portfolio Manager 3DEXPERIENCE R2022x...