CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

132 matches found

Reprise License Manager 14.2 - Cross-Site Scripting

Reprise License Manager 14.2 contains a reflected cross-site scripting vulnerability in the /goform/loginprocess 'username' parameter via GET, whereby no authentication is required. id: CVE-2022-28363 info: name: Reprise License Manager 14.2 - Cross-Site Scripting author: Akincibor severity: medi...

6.1CVSS5.8AI score0.1389EPSS

Exploits3References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-24063

Malware in sbrugna...

6.5CVSS6.6AI score0.00186EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-24065

Malware in sbrugna...

8.1CVSS8AI score0.00707EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-17485

Malware in sbrugna...

8.5CVSS8AI score0.00427EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-24064

Malware in sbrugna...

6.5CVSS6.5AI score0.00256EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-5546

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.0003EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-32813

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00388EPSS

Exploits3References4

VulnCheck KEV•added 2025/06/05 12:0 a.m.•2 views

VulnCheck KEV: CVE-2022-28363

Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability XSS in the /goform/loginprocess username parameter via GET. No authentication is required...

6.1CVSS5.7AI score0.1389EPSS

Exploits3References1

VulnCheck KEV•added 2025/06/05 12:0 a.m.•2 views

VulnCheck KEV: CVE-2022-28365

Reprise License Manager 14.2 is affected by an Information Disclosure vulnerability via a GET request to /goforms/rlminfo. No authentication is required. The information disclosed is associated with software versions, process IDs, network configuration, hostnames, system architecture, and...

5.3CVSS5.8AI score0.54742EPSS

Exploits3References1

VulnCheck KEV•added 2025/06/05 12:0 a.m.•1 views

VulnCheck KEV: CVE-2021-45422

Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability in the /goform/activateprocess "count" parameter via GET. No authentication is required...

6.1CVSS5.7AI score0.21516EPSS

Exploits3References1

RedhatCVE•added 2025/05/23 4:38 a.m.•2 views

CVE-2023-44031

Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request...

7.5CVSS6.6AI score0.00081EPSS

Exploits2

RedhatCVE•added 2025/05/22 10:41 p.m.•3 views

CVE-2022-28364

Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability XSS in the /goform/rlmswitchrprocess file parameter via GET. Authentication is required...

5.4CVSS5.9AI score0.00388EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 10:41 p.m.•5 views

CVE-2022-28365

5.3CVSS6.6AI score0.54742EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 10:40 p.m.•2 views

CVE-2022-28363

Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability XSS in the /goform/loginprocess username parameter via GET. No authentication is required...

6.1CVSS6AI score0.1389EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 8:6 p.m.•6 views

CVE-2021-37500

Directory traversal vulnerability in Reprise License Manager RLM web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server...

8.1CVSS6.8AI score0.00707EPSS

Exploits0

RedhatCVE•added 2025/05/22 1:10 p.m.•9 views

CVE-2018-15574

An issue was discovered in the license editor in Reprise License Manager RLM through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/editlfgetdata lf parameter via GET or POST. NOTE: the vendor has stated "We do not consider this a vulnerability."...

6.1CVSS6.3AI score0.00328EPSS

Exploits1References1

RedhatCVE•added 2025/03/20 3:53 p.m.•4 views

CVE-2021-45422

Reprise License Manager 14.2 is affected by a reflected cross-site scripting vulnerability in the /goform/activateprocess "count" parameter via GET. No authentication is required...

6.1CVSS6.3AI score0.21516EPSS

Exploits3

RedhatCVE•added 2025/03/05 1:20 a.m.•22 views

CVE-2025-25939

Reprise License Manager 14.2 is vulnerable to reflected cross-site scripting in /goform/activateprocess via the akey parameter...

6.1CVSS6.2AI score0.0003EPSS

Exploits0References1