CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-27279

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00156EPSS

Exploits1References2

RedhatCVE•added 2025/09/11 12:16 a.m.•7 views

CVE-2025-52277

Cross Site Scripting vulnerability in YesWiki v.4.54 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.1CVSS7AI score0.00156EPSS

Exploits1References1

Github Security Blog•added 2025/09/09 3:31 p.m.•4 views

YesWiki Cross Site Scripting vulnerability

Cross Site Scripting vulnerability in YesWiki v.4.5.4 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.1CVSS7.1AI score0.00156EPSS

Exploits1References4Affected Software1

Snyk•added 2025/09/09 3:31 p.m.•2 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the robots field in the meta configuration. An attacker can execute arbitrary scripts in the context of the user's browser by submitting a specially crafted payload. Details Cross-site scripting or XSS is a...

6.1CVSS5.5AI score0.00156EPSS

Exploits1References2

OSV•added 2025/09/09 3:31 p.m.•4 views

GHSA-29CJ-CXW4-V4J2 YesWiki Cross Site Scripting vulnerability

Cross Site Scripting vulnerability in YesWiki v.4.5.4 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.1CVSS7.1AI score0.00156EPSS

Exploits1References4

OSV•added 2025/09/09 3:15 p.m.•4 views

CVE-2025-52277

Cross Site Scripting vulnerability in YesWiki v.4.54 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.1CVSS7.1AI score0.00156EPSS

Exploits1References2

NVD•added 2025/09/09 3:15 p.m.•7 views

CVE-2025-52277

Cross Site Scripting vulnerability in YesWiki v.4.54 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.1CVSS0.00156EPSS

Exploits1References2

CVE•added 2025/09/09 12:0 a.m.•13 views

CVE-2025-52277

CVE-2025-52277 is a Cross-Site Scripting (XSS) vulnerability in YesWiki v4.54. The issue arises from unsanitized input in the meta configuration’s robots field, allowing a remote attacker to execute arbitrary scripts in the user’s browser. Exploitation is performed via a crafted payload sent to t...

6.1CVSS6.7AI score0.00156EPSS

Exploits1References2Affected Software1

CNNVD•added 2025/09/09 12:0 a.m.•2 views

YesWiki 安全漏洞

YesWiki is a wiki system written in PHP by the French organization YesWiki. It is used to create and manage websites in a collaborative manner. A security vulnerability exists in YesWiki version 4.54, which stems from cross-site scripting in the meta configuration robots field and could lead to t...

6.1CVSS6.2AI score0.00156EPSS

Exploits1References3

Vulnrichment•added 2025/09/09 12:0 a.m.•6 views

CVE-2025-52277

Cross Site Scripting vulnerability in YesWiki v.4.54 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field...

6.7AI score0.00156EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by