CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 9:32 a.m.•6 views

CVE-2024-39143

A stored cross-site scripting XSS vulnerability exists in ResidenceCMS 2.10.1 that allows a low-privilege user to create malicious property content with HTML inside which acts as a stored XSS payload...

5.4CVSS4.8AI score0.00273EPSS

Exploits3References1

Exploit DB•added 2025/04/09 12:0 a.m.•259 views

ResidenceCMS 2.10.1 - Stored Cross-Site Scripting (XSS)

Exploit Title: ResidenceCMS 2.10.1 - Stored Cross-Site Scripting XSS Date: 8-7-2024 Category: Web Application Exploit Author: Jeremia Geraldi Sihombing Version: 2.10.1 Tested on: Windows CVE: CVE-2024-39143 Description: ---------------- A stored cross-site scripting XSS vulnerability exists in...

5.4CVSS5.5AI score0.00273EPSS

Exploits3

Packet Storm•added 2024/07/08 12:0 a.m.•253 views

ResidenceCMS 2.10.1 Cross Site Scripting

Exploit Title: ResidenceCMS 4. After saving the new property content and clicking the 'Finish Editing', go to the page and see the XSS is triggered. It is possible to trigger the XSS by using any account or even unauthorized account. Burp Request ------------------- POST /en/user/property/7/edit...

5.4CVSS7.1AI score0.00273EPSS

Exploits3

CNVD•added 2024/07/05 12:0 a.m.•4 views

ResidenceCMS Cross-Site Scripting Vulnerability

ResidenceCMS is a fast, lightweight property management system. A cross-site scripting vulnerability exists in ResidenceCMS version 2.10.1, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to create malicious...

5.4CVSS5.7AI score0.00273EPSS

Exploits3References1

OSV•added 2024/07/02 2:15 p.m.•4 views

CVE-2024-39143

5.4CVSS4.7AI score

Exploits0References1

NVD•added 2024/07/02 2:15 p.m.•11 views

CVE-2024-39143

5.4CVSS0.00273EPSS

Exploits3References1

Vulnrichment•added 2024/07/02 12:0 a.m.•8 views

CVE-2024-39143

4.9AI score0.00273EPSS

Exploits3References1

CVE•added 2024/07/02 12:0 a.m.•44 views

CVE-2024-39143

CVE-2024-39143 describes a stored cross-site scripting (XSS) vulnerability in ResidenceCMS 2.10.1. A low-privilege user can save malicious HTML in a property content field, which is then stored and rendered on secondary views, potentially triggering payloads (including when visited by an administ...

5.4CVSS4.9AI score0.00273EPSS

Exploits3References1Affected Software1

Positive Technologies•added 2024/07/02 12:0 a.m.•2 views

PT-2024-28361 · Unknown · Residencecms

Name of the Vulnerable Software and Affected Versions: ResidenceCMS version 2.10.1 Description: A stored cross-site scripting XSS issue exists, allowing a low-privilege user to create malicious property content with HTML inside, which acts as a stored XSS payload. Recommendations: For ResidenceCM...

5.4CVSS5.2AI score0.00273EPSS

Exploits3References4