Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2025/11/15 12:47 a.m.9 views

CVE-2025-63724

SQL injection SQL-i vulnerability in SVX Portal 2.7A via crafted POST request to admin/updatesetings.php...

6CVSS8AI score0.00239EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/15 12:47 a.m.8 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

6.1CVSS5.9AI score0.00196EPSS
Exploits1References1
OSV
OSV
added 2025/11/14 6:15 p.m.3 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

6.1CVSS5.8AI score0.00196EPSS
Exploits1References2
NVD
NVD
added 2025/11/14 6:15 p.m.5 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

6.1CVSS0.00196EPSS
Exploits1References2
NVD
NVD
added 2025/11/14 6:15 p.m.4 views

CVE-2025-63724

SQL injection SQL-i vulnerability in SVX Portal 2.7A via crafted POST request to admin/updatesetings.php...

6CVSS0.00239EPSS
Exploits1References1
OSV
OSV
added 2025/11/14 6:15 p.m.4 views

CVE-2025-63724

SQL injection SQL-i vulnerability in SVX Portal 2.7A via crafted POST request to admin/updatesetings.php...

6CVSS5.9AI score0.00239EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/11/14 12:0 a.m.3 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

5.5AI score0.00196EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/14 12:0 a.m.5 views

PT-2025-46995

Name of the Vulnerable Software and Affected Versions SVX Portal version 2.7A Description A SQL injection flaw exists in SVX Portal version 2.7A. This issue is triggered by a specially crafted POST request sent to the /admin/update setings.php endpoint. Successful exploitation could allow an...

6CVSS7.5AI score0.00239EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/14 12:0 a.m.9 views

CVE-2025-63725

Reflected Cross-Site Scripting XSS vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php...

0.00196EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/14 12:0 a.m.4 views

CVE-2025-63724

SQL injection SQL-i vulnerability in SVX Portal 2.7A via crafted POST request to admin/updatesetings.php...

7.6AI score0.00239EPSS
Exploits1References1
CVE
CVE
added 2025/11/14 12:0 a.m.15 views

CVE-2025-63724

SVX Portal 2.7A has a SQL injection in the admin/update_setings.php endpoint triggered by crafted POST requests. The vulnerability affects the portal’s server-side handling of input and can lead to unauthorized query manipulation. References from multiple sources corroborate the issue for version...

6CVSS7.6AI score0.00239EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2025/11/14 12:0 a.m.14 views

CVE-2025-63725

SVX Portal 2.7A contains a reflected Cross-Site Scripting (XSS) vulnerability in Recivers.php via the id parameter. The connected documents consistently describe an XSS flaw triggered by unvalidated/manipulable input in the id parameter, enabling script injection in pages rendered to victims. Imp...

6.1CVSS5.5AI score0.00196EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/10 1:32 a.m.17 views

CVE-2025-61532

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

6.1CVSS7.2AI score0.00265EPSS
Exploits0References1
OSV
OSV
added 2025/10/09 4:15 p.m.4 views

CVE-2025-61532

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

6.1CVSS6.1AI score0.00265EPSS
Exploits0References3
NVD
NVD
added 2025/10/09 4:15 p.m.5 views

CVE-2025-61532

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

6.1CVSS0.00265EPSS
Exploits0References3
CVE
CVE
added 2025/10/09 12:0 a.m.24 views

CVE-2025-61532

CVE-2025-61532 describes a Cross Site Scripting vulnerability in SVX Portal v2.7A affecting the last_heard_page.php component, exploitable via the TG parameter to execute arbitrary code. The issue is documented across multiple feeds (NVD, Red Hat, CNNVD, CVE records) with an impact described as a...

6.1CVSS6.8AI score0.00265EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.4 views

PT-2025-41392

Name of the Vulnerable Software and Affected Versions SVX Portal version 2.7A Description A Cross Site Scripting issue exists in SVX Portal version 2.7A that allows for the execution of arbitrary code. The issue is located in the last heard page.php component and involves the TG parameter...

6.1CVSS6.3AI score0.00265EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/10/09 12:0 a.m.4 views

CVE-2025-61532

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

6.8AI score0.00265EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/09 12:0 a.m.5 views

EUVD-2025-33355

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

6.1CVSS6.7AI score0.00265EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/09 12:0 a.m.11 views

CVE-2025-61532

Cross Site Scripting vulnerability in SVX Portal v.2.7A to execute arbitrary code via the TG parameter on lastheardpage.php component...

0.00265EPSS
Exploits0References3
Rows per page
Query Builder