Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6714 matches found

Vulnrichment
Vulnrichmentadded 2025/03/20 12:0 a.m.10 views

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

6AI score0.00199EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/03/20 12:0 a.m.17 views

CVE-2025-29410

A cross-site scripting XSS vulnerability in the component /contact.php of Hospital Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the txtEmail parameter...

0.00208EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/03/20 12:0 a.m.2 views

ChuanhuChatGPT 安全漏洞

ChuanhuChatGPT is an application that provides a lightweight and easy-to-use web GUI and many additional features for a wide range of LLMs such as ChatGPT. ChuanhuChatGPT suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping o...

5.4CVSS5.4AI score0.00352EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/03/20 12:0 a.m.2 views

Hospital Management System 安全漏洞

Hospital Management System is a hospital management system by the individual developer Kishan Lal. A security vulnerability exists in Hospital Management System v1.0, which stems from a cross-site scripting vulnerability in the /contact.php component that could lead to the execution of arbitrary...

6.1CVSS6AI score0.00208EPSS
Exploits1References2
CVE
CVEadded 2025/03/20 12:0 a.m.65 views

CVE-2025-29412

The CVE-2025-29412 entry identifies an XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0. The issue arises from injected payloads in the Name parameter, enabling arbitrary web scripts or HTML execution. Affected component: iBanking v2.0.0, Client Profile Up...

4.8CVSS5.7AI score0.00199EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2025/03/20 12:0 a.m.65 views

CVE-2025-29410

CVE-2025-29410 is a documented XSS vulnerability in Hospital Management System v1.0, exploitable via the /contact.php component where a crafted payload injected into the txtEmail parameter can execute arbitrary script/HTML. Affected component: /contact.php; vulnerability type: XSS; CVSS v3.1 base...

6.1CVSS5.7AI score0.00208EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVEadded 2025/03/19 2:23 p.m.7 views

CVE-2025-0600

A stored Cross-site Scripting XSS vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:22 p.m.6 views

CVE-2025-0833

A stored Cross-site Scripting XSS vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:22 p.m.5 views

CVE-2025-0828

A stored Cross-site Scripting XSS vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:22 p.m.6 views

CVE-2025-0826

A stored Cross-site Scripting XSS vulnerability affecting 3D Navigate in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:20 p.m.5 views

CVE-2025-0827

A stored Cross-site Scripting XSS vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:20 p.m.6 views

CVE-2025-0829

A stored Cross-site Scripting XSS vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:20 p.m.5 views

CVE-2025-0599

A stored Cross-site Scripting XSS vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.0023EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/03/19 2:19 p.m.6 views

CVE-2025-0601

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00228EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/03/19 12:0 a.m.7 views

RHEL 8 : libreoffice (RHSA-2025:2868)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:2868 advisory. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a...

7.8CVSS8.2AI score0.00291EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEVadded 2025/03/19 12:0 a.m.2 views

VulnCheck KEV: CVE-2024-22120

Zabbix server can perform command execution for configured scripts. After command is executed, audit entry is added to "Audit Log". Due to "clientip" field is not sanitized, it is possible to injection SQL into "clientip" and exploit time based blind SQL injection...

9.1CVSS7.5AI score0.76618EPSS
Exploits5References1
Mageia
Mageiaadded 2025/03/18 12:4 a.m.19 views

Updated libreoffice packages fix security vulnerability

Macro URL arbitrary script execution. CVE-2025-1080...

7.8CVSS7.2AI score0.00291EPSS
Exploits0References3
OpenVAS
OpenVASadded 2025/03/18 12:0 a.m.10 views

Mageia: Security Advisory (MGASA-2025-0103)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.7AI score0.00291EPSS
Exploits0References5
OSV
OSVadded 2025/03/17 2:15 p.m.3 views

CVE-2025-0601

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score
Exploits0References1
OSV
OSVadded 2025/03/17 2:15 p.m.1 views

CVE-2025-0598

A stored Cross-site Scripting XSS vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder