CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6239 matches found

RedhatCVE•added 2025/05/22 5:40 p.m.•8 views

CVE-2020-1050

A cross site scripting vulnerability exists when Microsoft Dynamics 365 on-premises does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 On-Premise Cross Site Scripting Vulnerability'. This CVE ID is unique from CVE-2020-1049...

6.1CVSS5.6AI score0.01791EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:35 p.m.•4 views

CVE-2020-9584

Magento versions 2.3.4 and earlier, 2.2.11 and earlier see note, 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure...

5.4CVSS5.6AI score0.01172EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:33 p.m.•5 views

CVE-2020-18469

Stored cross-site scripting XSS vulnerability in the Copyright Text field found in the Application page under the Configuration menu in Rukovoditel 2.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to...

5.4CVSS5.3AI score0.00526EPSS

Exploits1

RedhatCVE•added 2025/05/22 5:10 p.m.•7 views

CVE-2020-35419

Cross Site Scripting XSS in Group Office CRM 6.4.196 via the SETLANGUAGE parameter...

6.1CVSS6.1AI score0.00667EPSS

Exploits1

RedhatCVE•added 2025/05/22 5:5 p.m.•4 views

CVE-2020-20605

Blog CMS v1.0 contains a cross-site scripting XSS vulnerability in the /controller/CommentAdminController.java component...

6.1CVSS5.8AI score0.00652EPSS

Exploits1

RedhatCVE•added 2025/05/22 5:0 p.m.•6 views

CVE-2020-15034

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Setup.php tet parameter...

5.4CVSS6.1AI score0.00568EPSS

Exploits0

RedhatCVE•added 2025/05/22 4:55 p.m.•7 views

CVE-2020-9651

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6.3AI score0.02441EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:44 p.m.•6 views

CVE-2020-5903

In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, a Cross-Site Scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility...

6.1CVSS5.8AI score0.02233EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:43 p.m.•5 views

CVE-2020-5838

Symantec IT Analytics, prior to 2.9.1, may be susceptible to a cross-site scripting XSS exploit, which is a type of issue that can potentially enable attackers to inject client-side scripts into web pages viewed by other users...

4.8CVSS5.8AI score0.00689EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:39 p.m.•8 views

CVE-2020-36637

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Chris92de AdminServ. It has been declared as problematic. This vulnerability affects unknown code of the file resources/core/adminserv.php. The manipulation of the argument text leads to cross site scripting. The attack can be initiated...

6.1CVSS6.4AI score0.00544EPSS

Exploits0

RedhatCVE•added 2025/05/22 4:39 p.m.•4 views

CVE-2020-36486

Swift File Transfer Mobile v1.1.2 and below was discovered to contain a cross-site scripting XSS vulnerability via the 'path' parameter of the 'list' and 'download' exception-handling...

6.1CVSS6.2AI score0.00702EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:36 p.m.•4 views

CVE-2020-29171

Cross-site scripting XSS vulnerability in admin/wp-security-blacklist-menu.php in the Tips and Tricks HQ All In One WP Security & Firewall all-in-one-wp-security-and-firewall plugin before 4.4.6 for WordPress...

6.1CVSS6AI score0.01495EPSS

Exploits0

RedhatCVE•added 2025/05/22 4:30 p.m.•7 views

CVE-2020-22330

Cross-Site Scripting XSS vulnerability in Subrion 4.2.1 via the title when adding a page...

6.1CVSS5.8AI score0.00641EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:29 p.m.•6 views

CVE-2020-21504

waimai Super Cms 20150505 contains a cross-site scripting XSS vulnerability in the component /admin.php?=Public=login...

6.1CVSS5.8AI score0.00641EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:29 p.m.•7 views

CVE-2020-20345

WTCMS 1.0 contains a reflective cross-site scripting XSS vulnerability in the page management background which allows attackers to obtain cookies via a crafted payload entered into the search box...

5.4CVSS5.6AI score0.00714EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:28 p.m.•5 views

CVE-2020-19292

A stored cross-site scripting XSS vulnerability in the /question/ask component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in a posted question...

5.4CVSS5.5AI score0.0054EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:12 p.m.•10 views

CVE-2020-22224

Stivasoft Phpjabbers Fundraising Script v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the pjActionPreview function...

6.1CVSS6.2AI score0.00641EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:52 p.m.•28 views

CVE-2020-27885

Cross-Site Scripting XSS vulnerability on WSO2 API Manager 3.1.0. By exploiting a Cross-site scripting vulnerability the attacker can hijack a logged-in user’s session by stealing cookies which means that a malicious hacker can change the logged-in user’s password and invalidate the session of th...

6.1CVSS5.8AI score0.00926EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:46 p.m.•4 views

CVE-2020-1101

A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1099, CVE-2020-1100, CVE-2020-1106...

6.1CVSS5.1AI score0.03077EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 3:46 p.m.•7 views

CVE-2020-18325

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

6.1CVSS5.9AI score0.02147EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by