CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/05/27 2:16 a.m.•7 views

CVE-2026-9608

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS0.00032EPSS

ATTACKERKB•added 2026/05/27 12:15 a.m.•9 views

CVE-2026-9608

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/27 12:15 a.m.•4 views

CVE-2026-9608 QianFox FoxCMS Administrator Backend edit cross site scripting

EUVD•added 2026/05/27 12:15 a.m.•14 views

EUVD-2026-32028

CVE•added 2026/05/27 12:15 a.m.•15 views

CVE-2026-9608

CVE-2026-9608 affects QianFox FoxCMS (up to version 1.2.6) in the Administrator Backend, specifically the /Tag/edit function where a manipulated request can trigger cross-site scripting. The vulnerability arises from an unspecified element/function within that file, allowing remote exploitation. ...

CNNVD•added 2026/05/27 12:0 a.m.•6 views

FoxCMS 代码注入漏洞

FoxCMS is a content management system provided by FoxCMS Company in China, available for free commercial use and open source. Versions of FoxCMS 1.2.6 and earlier have a code injection vulnerability. This vulnerability stems from unknown functions in the Administrator Backend component/Tag/edit...

4.8CVSS5.7AI score0.00032EPSS

Positive Technologies•added 2026/05/27 12:0 a.m.•10 views

PT-2026-43470

RedhatCVE•added 2025/05/23 3:17 a.m.•3 views

Exploits0References6

CVE-2023-27923

Cross-site scripting vulnerability in Tag edit function of VK Blocks 1.53.0.1 and earlier and VK Blocks Pro 1.53.0.1 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4CVSS6.5AI score0.00466EPSS

Exploits0References1

NVD•added 2023/05/23 2:15 a.m.•10 views

CVE-2023-27923

5.4CVSS5.2AI score0.00466EPSS

ATTACKERKB•added 2023/05/23 2:15 a.m.•2 views

CVE-2023-27923

5.4CVSS6.6AI score0.00466EPSS

Exploits0References3Affected Software1

OSV•added 2023/05/23 2:15 a.m.•12 views

CVE-2023-27923

5.4CVSS6.5AI score

Positive Technologies•added 2023/05/23 12:0 a.m.•3 views

PT-2023-21422 · Unknown +1 · Vk Blocks Pro +1

Name of the Vulnerable Software and Affected Versions: VK Blocks versions 1.53.0.1 and earlier VK Blocks Pro versions 1.53.0.1 and earlier Description: A cross-site scripting issue in the Tag edit function allows a remote authenticated attacker to inject an arbitrary script. This enables the...

5.4CVSS8.9AI score0.00466EPSS

Exploits0References7

Cvelist•added 2023/05/23 12:0 a.m.•12 views

CVE-2023-27923

5.4AI score0.00466EPSS

OSV•added 2017/08/29 8:29 p.m.•1 views

PYSEC-2017-108

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality...

6.1CVSS7.1AI score0.0144EPSS