CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6239 matches found

RedhatCVE•added 2025/05/22 8:22 a.m.•4 views

CVE-2019-17489

Jiangnan Online Judge aka jnoj 0.8.0 has XSS via the Problemtitle parameter to web/polygon/problem/create or web/polygon/problem/update or web/admin/problem/create...

6.1CVSS5.9AI score0.01058EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:20 a.m.•5 views

CVE-2019-6029

Cross-site scripting vulnerability in Custom Body Class 0.6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6.5AI score0.00937EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:14 a.m.•3 views

CVE-2019-14227

OX App Suite 7.10.1 and 7.10.2 allows XSS...

6.1CVSS7AI score0.00999EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 8:12 a.m.•5 views

CVE-2019-15935

Intesync Solismed 3.3sp has XSS...

6.1CVSS7AI score0.01308EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:12 a.m.•5 views

CVE-2019-16156

An Improper Neutralization of Input vulnerability in the Anomaly Detection Parameter Name in Fortinet FortiWeb 6.0.5, 6.2.0, and 6.1.1 may allow a remote unauthenticated attacker to perform a Cross Site Scripting attack XSS...

6.1CVSS6.7AI score0.00998EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:6 a.m.•6 views

CVE-2018-17981

Lifesize Express ls ex24.7.10 2000 14 devices allow XSS via the interface/interface.php brand parameter...

6.1CVSS6AI score0.00776EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:6 a.m.•7 views

CVE-2019-0874

A Cross-site Scripting XSS vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'...

6.1CVSS5.9AI score0.01983EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:2 a.m.•13 views

CVE-2019-0321

ABAP Server and ABAP Platform SAP Basis, versions, 7.31, 7.4, 7.5, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

6.1CVSS6.1AI score0.01337EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:37 a.m.•4 views

CVE-2019-0368

SAP Customer Relationship Management Email Management, versions: S4CRM before 1.0 and 2.0, BBPCRM before 7.0, 7.01, 7.02, 7.12, 7.13 and 7.14, does not sufficiently encode user-controlled inputs within the mail client resulting in Cross-Site Scripting vulnerability...

5.4CVSS6.5AI score0.00526EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:9 a.m.•6 views

CVE-2018-5375

Discuz! DiscuzX X3.4 has XSS via the include\spacecp\spacecpspace.php appid parameter in a delete action...

6.1CVSS5.9AI score0.00845EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:7 a.m.•4 views

CVE-2019-12315

Samsung SCX-824 printers allow a reflected Cross-Site-Scripting XSS vulnerability that can be triggered by using the "print from file" feature, as demonstrated by the sws/swsAlert.sws?popupid=successMsg msg parameter...

6.1CVSS6.5AI score0.00802EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:47 a.m.•5 views

CVE-2018-17021

Cross-site scripting XSS vulnerability on ASUS GT-AC5300 devices with firmware through 3.0.0.4.38432738 allows remote attackers to inject arbitrary web script or HTML via the appGet.cgi hook parameter...

6.1CVSS6.1AI score0.01095EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:30 a.m.•3 views

CVE-2016-2139

In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in $filelink in class/KippoInput.class.php...

6.4CVSS6.3AI score0.00467EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:29 a.m.•6 views

CVE-2019-6031

Cross-site scripting vulnerability in KINZA for Windows version 5.9.2 and earlier and for Mac version 5.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via RSS reader...

6.1CVSS6.5AI score0.00781EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:13 a.m.•3 views

CVE-2012-6608

Cross-site scripting XSS vulnerability in xmlservices/Ebook.php in Elastix 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the Page parameter...

4.3CVSS5.9AI score0.02551EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 5:35 a.m.•2 views

CVE-2012-6585

Cross-site scripting XSS vulnerability in search.php in MYRE Realty Manager allows remote attackers to inject arbitrary web script or HTML via the catid1 parameter...

4.3CVSS5.9AI score0.01374EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 5:21 a.m.•4 views

CVE-2019-6018

Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier NetCommons3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6.4AI score0.00781EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:12 a.m.•17 views

CVE-2012-1908

Cross-site scripting XSS vulnerability in Splunk 4.0 through 4.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

4.3CVSS5.9AI score0.00942EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:9 a.m.•7 views

CVE-2010-3003

Cross-site scripting XSS vulnerability in HP Insight Diagnostics Online Edition before 8.5.0-11 on Linux allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.0444EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:5 a.m.•5 views

CVE-2014-8667

Cross-site scripting XSS vulnerability in SAP HANA Web-based Development Workbench allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.00931EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by