Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5210 matches found

NVD
NVDadded 2024/03/06 1:15 a.m.10 views

CVE-2023-49977

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the address parameter at /customersupport/index.php?page=newcustomer...

5.4CVSS5.6AI score0.0045EPSS
Exploits1References2
NVD
NVDadded 2024/03/06 1:15 a.m.11 views

CVE-2023-49974

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the contact parameter at /customersupport/index.php?page=customerlist...

6.1CVSS5.6AI score0.0045EPSS
Exploits1References2
NVD
NVDadded 2024/03/06 1:15 a.m.8 views

CVE-2023-49971

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter at /customersupport/index.php?page=customerlist...

6.1CVSS5.6AI score0.00433EPSS
Exploits1References2
Prion
Prionadded 2024/03/06 1:15 a.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter at /customersupport/index.php?page=customerlist...

5.9AI score0.0045EPSS
Exploits1References2
Prion
Prionadded 2024/03/06 1:15 a.m.10 views

Cross site scripting

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter at /customersupport/index.php?page=customerlist...

5.9AI score0.00433EPSS
Exploits1References2
Prion
Prionadded 2024/03/06 1:15 a.m.12 views

Cross site scripting

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the contact parameter at /customersupport/index.php?page=customerlist...

5.9AI score0.0045EPSS
Exploits1References2
Prion
Prionadded 2024/03/06 1:15 a.m.11 views

Cross site scripting

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the subject parameter at /customersupport/index.php?page=newticket...

5.9AI score0.00466EPSS
Exploits4References2
Prion
Prionadded 2024/03/06 1:15 a.m.11 views

Cross site scripting

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the address parameter at /customersupport/index.php?page=newcustomer...

5.9AI score0.0045EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/03/06 12:0 a.m.12 views

CVE-2023-49974

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the contact parameter at /customersupport/index.php?page=customerlist...

5.7AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.13 views

CVE-2023-49973

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter at /customersupport/index.php?page=customerlist...

5.7AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.13 views

CVE-2023-49984

A cross-site scripting XSS vulnerability in the component /management/settings of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

5.7AI score0.00483EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/03/06 12:0 a.m.14 views

CVE-2023-49976

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the subject parameter at /customersupport/index.php?page=newticket...

5.7AI score0.00466EPSS
Exploits4References2
Vulnrichment
Vulnrichmentadded 2024/03/06 12:0 a.m.12 views

CVE-2023-49977

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the address parameter at /customersupport/index.php?page=newcustomer...

5.7AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.28 views

CVE-2023-49976

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the subject parameter at /customersupport/index.php?page=newticket...

5.7AI score0.00466EPSS
Exploits4References2
Vulnrichment
Vulnrichmentadded 2024/03/06 12:0 a.m.13 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

5.9AI score0.00574EPSS
Exploits1References2
WPVulnDB
WPVulnDBadded 2024/03/06 12:0 a.m.13 views

WPKoi Templates for Elementor < 2.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Heading Widget

Description The WPKoi Templates for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Advanced Heading widget in all versions up to, and including, 2.5.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacker...

6.4CVSS5.8AI score0.0032EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.15 views

CVE-2023-49974

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the contact parameter at /customersupport/index.php?page=customerlist...

5.7AI score0.0045EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/03/06 12:0 a.m.10 views

CVE-2023-49973

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter at /customersupport/index.php?page=customerlist...

5.7AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.11 views

CVE-2023-49977

A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the address parameter at /customersupport/index.php?page=newcustomer...

5.7AI score0.0045EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/03/06 12:0 a.m.17 views

CVE-2023-49983

A cross-site scripting XSS vulnerability in the component /management/class of School Fees Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter...

5.7AI score0.00574EPSS
Exploits1References2
Rows per page
Query Builder