Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Veracode
Veracodeadded 2026/03/18 6:44 a.m.6 views

Cross-Site Scripting (XSS)

code.gitea.io/gitea is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper handling of user input in the search input box used for creating tags and branches, where v-html is used instead of v-text, which allows an attacker to inject and execute malicious scripts in the...

5.4CVSS7.4AI score0.00222EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/05/24 9:31 p.m.7 views

CVE-2025-5133 Tmall Demo Search Box cross site scripting

A vulnerability classified as problematic has been found in Tmall Demo up to 20250505. Affected is an unknown function of the component Search Box. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be...

5.3CVSS4.3AI score0.00356EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 11:54 p.m.7 views

CVE-2022-23391

A cross-site scripting XSS vulnerability in Pybbs v6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the Search box...

6.1CVSS5.7AI score0.00611EPSS
Exploits1References1
CNVD
CNVDadded 2017/08/02 12:0 a.m.1 views

Cross-site scripting vulnerability in OurPHP search box

OurPHP 傲派建站系统 is a website content management system developed using PHP language, the developer is Harbin Weicheng Technology Co. A cross-site scripting vulnerability exists in the search box of OurPHP version 1.7.3, due to the failure of the system's search box to strictly filter parameters...

6.3AI score
Exploits0
CNVD
CNVDadded 2017/06/07 12:0 a.m.2 views

Reflective Cross-site Scripting Vulnerability in ESPCMS Enterprise Web Management System V6.7.17.04.05

ESPCMS enterprise website management system is based on LAMP development and construction of enterprise website management system. A reflective cross-site scripting vulnerability exists in the search box of the ESPCMS enterprise website management system. The vulnerability allows attackers to...

5.6AI score
Exploits0
CNVD
CNVDadded 2017/02/19 12:0 a.m.1 views

SemCms asp version search box has SQL injection vulnerability

SemCms is a set of open source foreign trade enterprise website management system, mainly used for foreign trade enterprises, compatible with IE, Firefox and other mainstream browsers.SemCms using php and vb language writing, combined with apache or iis running. SemCms asp version of the search b...

7.5AI score
Exploits0
Packet Storm
Packet Stormadded 2016/03/31 12:0 a.m.25 views

Axil CMS 3.0 Cross Site Scripting

Exploit Title : Axil CMS 3.0 Cross Site Scripting Exploit Author : Persian Hack Team Vendor Homepage : http://www.axilcreations.com/ Date: 2016/03/31 Version : 3.0 PoC: Search Box Vulnerable To XSS Payload = "Hacked By D: Demo : http://www.excelsior.edu.np/ http://jmeremit.com.np/ http://nrnil.co...

Exploits0
Rows per page
Query Builder