CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

102 matches found

RedhatCVE•added 2025/05/23 9:55 a.m.•4 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS6AI score0.00094EPSS

Exploits1References1

OSV•added 2024/03/14 1:15 p.m.•2 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS5.8AI score

Exploits0References1

NVD•added 2024/03/14 1:15 p.m.•7 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6.3CVSS5.7AI score0.00094EPSS

Exploits1References1

OSV•added 2024/03/14 1:15 p.m.•1 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.5CVSS5.8AI score

Exploits0References1

NVD•added 2024/03/14 1:15 p.m.•8 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.5CVSS6.7AI score0.00165EPSS

Exploits1References1

CVE•added 2024/03/14 12:0 a.m.•67 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via the /webEdition/we_cmd.php endpoint. The issue affects the webEdition CMS component (we_cmd.php) and requires user interaction; impact is described as low for confidentiality, integrity, and availability (CVSS 3.1 base score 6.3). Some sou...

6.3CVSS5.8AI score0.00094EPSS

Exploits1References1Affected Software1

CNNVD•added 2024/03/14 12:0 a.m.•2 views

Webedition Cross-Site Scripting Vulnerability

Webedition is an open source web application framework from the German company Webedition. A cross-site scripting vulnerability exists in Webedition CMS version 9.2.2.0, which originates from cross-site scripting in webEdition/wecmd.php...

6.3CVSS6.2AI score0.00094EPSS

Exploits1References2

Positive Technologies•added 2024/03/14 12:0 a.m.•3 views

PT-2024-22422 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is a Stored XSS vulnerability. It can be exploited via the "/webEdition/we cmd.php" API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a temporary workaround, consider...

6.3CVSS5.7AI score0.00094EPSS

Exploits1References6

Vulnrichment•added 2024/03/14 12:0 a.m.•16 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

6AI score0.00094EPSS

Exploits1References1

CVE•added 2024/03/14 12:0 a.m.•66 views

CVE-2024-28418

CVE-2024-28418 affects Webedition CMS 9.2.2.0 with a file-upload vulnerability exploitable via /webEdition/we_cmd.php. The vulnerability is documented across multiple feeds; the primary technical detail is the file upload path. No explicit fix version is provided in the sources; one advisory note...

6.5CVSS6.9AI score0.00165EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2024/03/14 12:0 a.m.•3 views

PT-2024-22423 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is related to a File upload vulnerability. This vulnerability can be exploited via the /webEdition/we cmd.php API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a...

6.5CVSS6.6AI score0.00165EPSS

Exploits1References7

Cvelist•added 2024/03/14 12:0 a.m.•14 views

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

5.8AI score0.00094EPSS

Exploits1References1

Cvelist•added 2024/03/14 12:0 a.m.•18 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

6.9AI score0.00165EPSS

Exploits1References1

Vulnrichment•added 2024/03/14 12:0 a.m.•11 views

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

7AI score0.00165EPSS

Exploits1References1

CNNVD•added 2024/03/14 12:0 a.m.•2 views

Webedition Security Vulnerabilities

Webedition is an open source web application framework from German company Webedition. A security vulnerability exists in Webedition CMS version 9.2.2.0, which stems from /webEdition/wecmd.php allowing file uploads...

6.5CVSS6.8AI score0.00165EPSS

Exploits1References2

Packet Storm•added 2023/10/10 12:0 a.m.•264 views

Webedition CMS 2.9.8.8 Server-Side Request Forgery

Exploit Title: Webedition CMS v2.9.8.8 - Blind SSRF Application: Webedition CMS Version: v2.9.8.8 Bugs: Blind SSRF Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 07.09.2023 Author: Mirabbas...

7.1AI score

Exploits0

0day.today•added 2023/10/09 12:0 a.m.•284 views

Webedition CMS v2.9.8.8 - Blind SSRF Vulnerability

7.1AI score

Exploits0

Exploit DB•added 2023/10/09 12:0 a.m.•351 views

Webedition CMS v2.9.8.8 - Blind SSRF

7AI score

Exploits0

0day.today•added 2023/08/04 12:0 a.m.•185 views

Webedition CMS v2.9.8.8 - Stored XSS Vulnerability

Exploit Title: Webedition CMS v2.9.8.8 - Stored XSS Application: Webedition CMS Version: v2.9.8.8 Bugs: Stored Xss Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author: Mirabbas...

7.1AI score

Exploits0

0day.today•added 2023/08/04 12:0 a.m.•387 views

Webedition CMS v2.9.8.8 - Remote Code Execution Exploit

Exploit Title: Webedition CMS v2.9.8.8 - Remote Code Execution RCE Application: webedition Cms Version: v2.9.8.8 Bugs: RCE Technology: PHP Vendor URL: https://www.webedition.org/ Software Link: https://download.webedition.org/releases/OnlineInstaller.tgz?p=1 Date of found: 03.08.2023 Author:...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by