Lucene search
K

11 matches found

Packet Storm
Packet Storm
added 2026/04/10 12:0 a.m.91 views

📄 WordPress IndieWeb 4.0.5 Cross Site Scripting

WordPress IndieWeb plugin versions 4.0.5 and below suffers from persistent cross site scripting vulnerability. CVE-2025-14893: Authenticated Stored Cross-Site Scripting XSS in IndieWeb WordPress Plugin Disclaimer: This repository is created for educational purposes and ethical disclosure only. Th...

6.4CVSS5.2AI score0.00205EPSS
Exploits2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-4943

Malware in sbrugna...

4.8CVSS5.2AI score0.00529EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/09/17 12:0 a.m.5 views

AC Repair and Services System Cross-Site Scripting Vulnerability

AC Repair and Services System is an air conditioning repair and services system by the individual developer Carlo Montero. A cross-site scripting vulnerability exists in AC Repair and Services System version 1.0, which stems from a cross-site scripting XSS vulnerability in the parameters...

6.1CVSS5.8AI score0.00312EPSS
Exploits0References4
OSV
OSV
added 2023/02/03 6:15 p.m.3 views

CVE-2021-36545

Cross Site Scripting XSS vulnerability in tpcms 3.2 allows remote attackers to run arbitrary code via the cfgcopyright or cfgtel field in Site Configuration page...

5.4CVSS6AI score0.00506EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.4 views

TPCMS 跨站脚本漏洞

TPCMS is a source of happiness Source of Happiness individual developers of an open source content management system. A cross-site scripting vulnerability exists in TPCMS version 3.2. A remote attacker can exploit this vulnerability to run arbitrary code via the cfgcopyright or cfgtel fields in t...

5.4CVSS6.6AI score0.00506EPSS
Exploits1References2
OSV
OSV
added 2019/06/19 5:15 p.m.5 views

CVE-2019-11233

EXCELLENT INFOTEK BiYan v1.57 v2.8 allows an attacker to leak user information without being authenticated, by sending a LOGINID element to the auth/main/asp/checkuserlogininfo.aspx URI, and then reading the response, as demonstrated by the KWEMAIL or KWTEL field...

7.5CVSS5.8AI score0.01504EPSS
Exploits1References1
CNVD
CNVD
added 2018/07/03 12:0 a.m.6 views

CMS MaeloStore Cross-Site Scripting Vulnerability

CMS MaeloStore is a PHP and MySQL based Content Management System CMS for web publishing and product catalogs. A cross-site scripting vulnerability exists in the Telephone field of the admin interface in CMS MaeloStore version 1.5.0. A remote attacker can exploit this vulnerability to inject...

4.8CVSS5AI score0.00529EPSS
Exploits1References1
OSV
OSV
added 2018/06/29 12:29 p.m.5 views

CVE-2018-12992

An issue was discovered CMS MaeloStore V.1.5.0. There is stored XSS in the Telephone field of the admin interface...

4.8CVSS5.8AI score0.00529EPSS
Exploits1References1
Prion
Prion
added 2018/06/29 12:29 p.m.17 views

Cross site scripting

An issue was discovered CMS MaeloStore V.1.5.0. There is stored XSS in the Telephone field of the admin interface...

3.5CVSS4.8AI score0.00529EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/06/29 12:29 p.m.14 views

CVE-2018-12992

An issue was discovered CMS MaeloStore V.1.5.0. There is stored XSS in the Telephone field of the admin interface...

4.8CVSS4.9AI score0.00529EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/06/29 12:0 p.m.15 views

CVE-2018-12992

An issue was discovered CMS MaeloStore V.1.5.0. There is stored XSS in the Telephone field of the admin interface...

4.9AI score0.00529EPSS
Exploits1References1
Rows per page
Query Builder