CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6714 matches found

OSV•added 2024/02/22 3:30 p.m.•12 views

GHSA-PCM8-QQRP-W6QF Enhavo Cross-site Scripting vulnerability

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

6.1CVSS5.8AI score0.00443EPSS

Exploits1References4

Github Security Blog•added 2024/02/22 3:30 p.m.•18 views

Enhavo Cross-site Scripting vulnerability

6.1CVSS5.7AI score0.00443EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2024/02/22 3:30 p.m.•21 views

Enhavo Cross-site Scripting vulnerability

6.1CVSS5.7AI score0.00424EPSS

Exploits1References4Affected Software1

CVE•added 2024/02/22 2:56 p.m.•4537 views

CVE-2024-26283

CVE-2024-26283 affects Firefox for iOS prior to version 123. The issue arises when opening an external URL with a custom Firefox scheme, allowing a JavaScript URI to execute unauthorized scripts on top-origin sites (cross-site scripting). Impact is described as potential unauthorized script execu...

7.8CVSS6AI score0.00278EPSS

Exploits0References2Affected Software1

Prion•added 2024/02/22 2:15 p.m.•18 views

Cross site scripting

6.1AI score0.00443EPSS

Exploits1References2

OSV•added 2024/02/22 6:15 a.m.•4 views

CVE-2024-26491

A cross-site scripting XSS vulnerability in the Addon JD Flusity 'Media Gallery with description' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Gallery name text field...

6.1CVSS5.7AI score

Exploits0References1

OSV•added 2024/02/22 6:15 a.m.•4 views

CVE-2024-26490

A cross-site scripting XSS vulnerability in the Addon JD Simple module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

5.4CVSS5.7AI score

Exploits0References1

Prion•added 2024/02/22 6:15 a.m.•24 views

Cross site scripting

5.8AI score0.00436EPSS

Exploits1References1

Prion•added 2024/02/22 6:15 a.m.•23 views

Cross site scripting

5.8AI score0.00408EPSS

Exploits1References1

Vulnrichment•added 2024/02/22 12:0 a.m.•21 views

CVE-2024-25875

5.7AI score0.00424EPSS

Exploits1References2

Vulnrichment•added 2024/02/22 12:0 a.m.•13 views

CVE-2024-26489

A cross-site scripting XSS vulnerability in the Addon JD Flusity 'Social block links' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Profile Name text field...

5.8AI score0.00413EPSS

Exploits1References1

CNNVD•added 2024/02/22 12:0 a.m.•2 views

Mozilla Firefox Security Vulnerability

Mozilla Firefox is an open source web browser from the Mozilla Foundation. A security vulnerability exists in Mozilla Firefox IOS prior to version 122, which originates when opening an external URL using a custom Firefox scheme and a timeout contention condition, and can be exploited by an attack...

8.1CVSS6.5AI score0.00387EPSS

Exploits0References3

CNNVD•added 2024/02/22 12:0 a.m.•3 views

Enhavo CMS Security Vulnerability

Enhavo CMS is a content management system from Enhavo. A security vulnerability exists in Enhavo CMS version v0.13.1. An attacker can exploit this vulnerability to execute arbitrary web script or HTML via a specially crafted payload injected into the Create Tag text field...

5.4CVSS6.7AI score0.00397EPSS

Exploits1References3

CNNVD•added 2024/02/22 12:0 a.m.•2 views

flusity CMS Security Vulnerability

flusity CMS is a user-interactive interface solution that can be easily changed or added to code. A security vulnerability exists in flusity CMS version v2.33, which stems from the presence of a cross-site scripting XSS vulnerability that allows an attacker to execute arbitrary web script or HTML...

6.1CVSS5.7AI score0.00436EPSS

Exploits1References2

CNNVD•added 2024/02/22 12:0 a.m.•3 views

Enhavo CMS Security Vulnerability

6.1CVSS6.7AI score0.00424EPSS

Exploits1References3

CNNVD•added 2024/02/22 12:0 a.m.•2 views

Enhavo CMS Security Vulnerability

6.1CVSS6.7AI score0.00443EPSS

Exploits1References3

Prion•added 2024/02/14 10:15 a.m.•15 views

Cross site scripting

Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page of the affected...

7.1AI score0.00786EPSS

Exploits0References3

Vulnrichment•added 2024/02/14 12:0 a.m.•9 views

CVE-2024-25300

A cross-site scripting XSS vulnerability in Redaxo v5.15.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Template section...

5.8AI score0.00358EPSS

Exploits0References1

Vulnrichment•added 2024/02/14 12:0 a.m.•10 views

CVE-2024-25225

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function...

5.3AI score0.00411EPSS

Exploits1References1

Vulnrichment•added 2024/02/14 12:0 a.m.•4 views

CVE-2024-25224

A cross-site scripting XSS vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function...

5.3AI score0.00375EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by