Lucene search
+L

30 matches found

RedhatCVE
RedhatCVE
added 2026/02/12 1:43 p.m.8 views

CVE-2025-13650

An attacker with access to the web application ZeusWeb of the provider Microcom in this case, registration is not necessary, but the action must be performed who has the vulnerable software could introduce arbitrary JavaScript by injecting an XSS payload into the ‘Surname’ parameter of the ‘Creat...

6.1CVSS5.7AI score0.00227EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.9 views

CVE-2019-11813

An issue was discovered in app/View/Elements/Events/View/valuefield.ctp in MISP before 2.4.107. There is persistent XSS via link type attributes with javascript:// links...

6.1CVSS5.8AI score0.008EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:26 a.m.8 views

CVE-2019-12445

An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. A malicious user could execute JavaScript code on notes by importing a specially crafted project file. It allows XSS...

5.4CVSS6.7AI score0.00576EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-9728

Malware in sbrugna...

5.4CVSS5.5AI score0.00842EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-7977

Malware in sbrugna...

6.1CVSS7.2AI score0.01766EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-5566

Malware in sbrugna...

6.1CVSS6.3AI score0.00865EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-5062

Malware in sbrugna...

6.1CVSS6.3AI score0.00966EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-12881

Malware in sbrugna...

6.1CVSS6.3AI score0.01114EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-4498

Malware in sbrugna...

6.1CVSS6.5AI score0.01372EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-43608

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00886EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-27275

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00615EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-58668

Malicious code in bioql PyPI...

6.3CVSS5.8AI score0.00388EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-27012

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00516EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-32537

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00783EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-16176

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00218EPSS
Exploits1References1
NVD
NVD
added 2025/08/07 1:15 a.m.9 views

CVE-2025-54783

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions 7.14.6 and below have a Reflected Cross-Site Scripting XSS vulnerability. This vulnerability allows an attacker to execute JavaScript code by modifying the HTTP Referer header to inclu...

6.1CVSS0.00215EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/07 12:5 a.m.12 views

CVE-2025-54783 SuiteCRM: Reflected Cross Site Scripting (XSS) through HTTP Referrer header

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions 7.14.6 and below have a Reflected Cross-Site Scripting XSS vulnerability. This vulnerability allows an attacker to execute JavaScript code by modifying the HTTP Referer header to inclu...

5.1CVSS0.00215EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/08 5:27 p.m.11 views

CVE-2025-7363 TitleIcon: Stored Cross-Site Scripting (XSS) via #titleicon_unicode parser function

The TitleIcon extension for MediaWiki is vulnerable to stored XSS through the titleiconunicode parser function. User input passed to this function is wrapped in an HtmlArmor object without sanitization and rendered directly into the page header, allowing attackers to inject arbitrary JavaScript...

0.00204EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/12 11:22 p.m.7 views

CVE-2025-47056

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.2AI score0.00279EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:29 a.m.6 views

CVE-2024-57329

HortusFox v3.9 contains a stored XSS vulnerability in the "Add Plant" function. The name input field does not sanitize or escape user inputs, allowing attackers to inject and execute arbitrary JavaScript payloads...

5.4CVSS6.3AI score0.00252EPSS
Exploits1References1
Rows per page
Query Builder