Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/15 12:23 a.m.4 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/01/14 6:31 p.m.6 views

pH7-Social-Dating-CMS affected by a stored cross-site scripting (XSS) vulnerability

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5AI score0.00257EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/14 6:16 p.m.4 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/14 12:0 a.m.2 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5AI score0.00257EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/14 12:0 a.m.31 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

0.00257EPSS
Exploits1References2
EUVD
EUVD
added 2025/11/13 12:30 a.m.3 views

EUVD-2025-150400

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.4CVSS5.1AI score0.00175EPSS
Exploits1References3
CVE
CVE
added 2025/11/12 12:0 a.m.8 views

CVE-2025-63645

CVE-2025-63645 is a stored XSS in pH7Software pH7-Social-Dating-CMS 17.9.1, affecting the messaging system where unsanitized message content is persisted and later rendered in Inbox view without proper encoding, allowing attacker-controlled content to execute in a recipient’s browser. Public docs...

5.4CVSS5.2AI score0.00175EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.3 views

PT-2025-46721

Name of the Vulnerable Software and Affected Versions pH7Software pH7-Social-Dating-CMS version 17.9.1 Description A stored cross-site scripting XSS issue exists in the application's message system. Unsanitized message content submitted by a user is stored by the server and displayed to other use...

5.4CVSS5.1AI score0.00175EPSS
Exploits1References7
Rows per page
Query Builder