CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/06/13 8:16 a.m.•4 views

CVE-2024-36214

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.8AI score0.00434EPSS

OSV•added 2024/06/13 8:16 a.m.•1 views

CVE-2024-36208

5.4CVSS5.8AI score0.00385EPSS

OSV•added 2024/06/13 8:16 a.m.•0 views

CVE-2024-36201

5.4CVSS5.8AI score

OSV•added 2024/06/13 8:16 a.m.•2 views

CVE-2024-36154

5.4CVSS5.8AI score0.00717EPSS

OSV•added 2024/06/13 8:16 a.m.•2 views

CVE-2024-36149

5.4CVSS5.8AI score0.00717EPSS

OSV•added 2024/06/13 8:15 a.m.•3 views

CVE-2024-26082

5.4CVSS5.8AI score0.00676EPSS

OSV•added 2024/06/13 8:15 a.m.•1 views

CVE-2024-26036

5.4CVSS5.8AI score0.0051EPSS

CNNVD•added 2024/06/13 12:0 a.m.•3 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.6AI score0.00676EPSS

Exploits0References2

CNNVD•added 2024/06/10 12:0 a.m.•3 views

LIVEBOX Collaboration vDesk Security Vulnerability

LIVEBOX Collaboration vDesk is an application from LIVEBOX, Inc. A security vulnerability exists in LIVEBOX Collaboration vDesk v018 and prior versions, which stems from a stored cross-site scripting XSS attack that may occur if parameters sent as input in an HTTP request are not properly checked...

6.1CVSS5.9AI score0.00314EPSS

Exploits1References2

Openbugbounty•added 2024/06/09 2:11 p.m.•7 views

hlaattachments.com Cross Site Scripting vulnerability OBB-3934218

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Openbugbounty•added 2024/06/08 8:11 p.m.•7 views

hennweb.de Cross Site Scripting vulnerability OBB-3933997

OSV•added 2024/06/08 3:15 p.m.•1 views

CVE-2024-35701

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PropertyHive allows Stored XSS.This issue affects PropertyHive: from n/a through 2.0.13...

5.4CVSS5.8AI score

Openbugbounty•added 2024/06/07 11:56 a.m.•9 views

us.edu.pl Cross Site Scripting vulnerability OBB-3933642

CNVD•added 2024/06/07 12:0 a.m.•7 views

WordPress Weaver Xtreme Theme Support plugin cross-site scripting vulnerability (CNVD-2024-26460)

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.4CVSS6.1AI score0.00273EPSS

CNVD•added 2024/06/07 12:0 a.m.•5 views

WordPress Boostify Header Footer Builder for Elementor plugin Cross Site Scripting Vulnerability

6.4CVSS6.6AI score0.00321EPSS

PyPA•added 2024/06/06 7:15 p.m.•6 views

PYSEC-2024-170

A stored Cross-Site Scripting XSS vulnerability was identified in the zenml-io/zenml repository, specifically within the 'logourl' field. By injecting malicious payloads into this field, an attacker could send harmful messages to other users, potentially compromising their accounts. The...

4.8CVSS5.8AI score0.00364EPSS

Exploits1References6Affected Software1

Openbugbounty•added 2024/06/06 1:44 p.m.•9 views

bd-best.com Cross Site Scripting vulnerability OBB-3933353