CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-63417

A Stored Cross-Site Scripting XSS vulnerability in the chat functionality of the SelfBest platform 2023.3 allows authenticated attackers to inject arbitrary web scripts or HTML via the chat message input field. This malicious content is stored and then executed in the context of other users'...

7.2CVSS5AI score0.00201EPSS

Exploits1References1

RedhatCVE•added 2025/11/07 1:46 p.m.•6 views

CVE-2025-63416

exclusively-hosted-service A Stored Cross-Site Scripting XSS vulnerability in the chat functionality of the SelfBest platform 2023.3 allows authenticated low-privileged attackers to execute arbitrary JavaScript in the context of other users' sessions. This can be exploited to access administrativ...

9.1CVSS5.7AI score0.00319EPSS

Exploits1References1

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-63418

A DOM-based Cross-Site Scripting XSS vulnerability in the SelfBest platform 2023.3 allows attackers to execute arbitrary JavaScript in the context of a logged-in user's session by injecting payloads via the browser's developer console. The vulnerability arises from the application's client-side...

6.1CVSS6.3AI score0.00182EPSS

Exploits1References1

OSV•added 2025/11/05 7:16 p.m.•3 views

CVE-2025-63417

7.2CVSS5.9AI score0.00201EPSS

Exploits1References1

OSV•added 2025/11/05 7:16 p.m.•2 views

CVE-2025-63418

6.1CVSS6AI score0.00182EPSS

Exploits1References1

NVD•added 2025/11/05 7:16 p.m.•2 views

CVE-2025-63417

7.2CVSS0.00201EPSS

Exploits1References1

NVD•added 2025/11/05 7:16 p.m.•3 views

CVE-2025-63418

6.1CVSS0.00182EPSS

Exploits1References1

NVD•added 2025/11/05 7:16 p.m.•1 views

CVE-2025-63416

9.1CVSS0.00319EPSS

Exploits1References2

OSV•added 2025/11/05 7:16 p.m.•4 views

CVE-2025-63416

9.1CVSS6AI score0.00319EPSS

Exploits1References2

Vulnrichment•added 2025/11/05 12:0 a.m.•3 views

CVE-2025-63418

5.8AI score0.00182EPSS

Exploits1References1

CVE•added 2025/11/05 12:0 a.m.•9 views

CVE-2025-63416

CVE-2025-63416 is a stored XSS vulnerability in SelfBest platform 2023.3 (chat feature). The issue allows authenticated, low-privileged users to execute arbitrary JavaScript in other sessions, potentially accessing administrative data and performing privilege escalation, including exfiltration of...

9.1CVSS5.5AI score0.00319EPSS

Exploits1References2Affected Software1

Cvelist•added 2025/11/05 12:0 a.m.•6 views

CVE-2025-63417

0.00201EPSS

Exploits1References1

EUVD•added 2025/11/05 12:0 a.m.•2 views

EUVD-2025-37928

5.7AI score0.00182EPSS

Exploits1References2

EUVD•added 2025/11/05 12:0 a.m.•3 views

EUVD-2025-37918

4.5AI score0.00201EPSS

Exploits1References2

Vulnrichment•added 2025/11/05 12:0 a.m.•2 views

CVE-2025-63417

4.6AI score0.00201EPSS

Exploits1References1

CNNVD•added 2025/11/05 12:0 a.m.•3 views

SelfBest 安全漏洞

SelfBest is a development-focused platform from SelfBest, Inc. in the United States. A security vulnerability exists in SelfBest version 2023.3, which stems from insufficient cleanup and escaping of chat message input fields in the chat feature, which could lead to a stored cross-site scripting...

7.2CVSS5.9AI score0.00201EPSS

Exploits1References1

CNNVD•added 2025/11/05 12:0 a.m.•2 views

SelfBest 安全漏洞

SelfBest is a development-focused platform from SelfBest, Inc. in the United States. A security vulnerability exists in SelfBest version 2023.3, which stems from client-side code that is susceptible to direct DOM manipulation and lacks adequate cleanup or content security policies, which could le...

6.1CVSS6AI score0.00182EPSS

Exploits1References1

Vulnrichment•added 2025/11/05 12:0 a.m.•3 views

CVE-2025-63416

5.5AI score0.00319EPSS

Exploits1References2

Cvelist•added 2025/11/05 12:0 a.m.•6 views

CVE-2025-63418

0.00182EPSS

Exploits1References1

EUVD•added 2025/11/05 12:0 a.m.•5 views

EUVD-2025-37926