CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2026/01/13 11:15 p.m.•3 views

CVE-2023-53985

Zstore, now referred to as Zippy CRM, 6.5.4 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts through unvalidated input parameters. Attackers can submit crafted payloads in manual insertion points to execute arbitrary JavaScript code in...

6.1CVSS6.1AI score

Exploits0References5

NVD•added 2026/01/13 11:15 p.m.•2 views

CVE-2023-53985

6.1CVSS0.00046EPSS

Exploits1References5

Cvelist•added 2026/01/13 10:56 p.m.•21 views

CVE-2023-53985 Zstore 6.5.4 - Reflected Cross-Site Scripting (XSS)

6.1CVSS0.00046EPSS

Exploits1References5

Vulnrichment•added 2026/01/13 10:56 p.m.•2 views

CVE-2023-53985 Zstore 6.5.4 - Reflected Cross-Site Scripting (XSS)

6.1CVSS6.2AI score0.00046EPSS

Exploits1References5

CNNVD•added 2026/01/13 12:0 a.m.•2 views

Zippy-CRM 跨站脚本漏洞

Zippy-CRM is an accounting system with a web interface by Leon Personal Developer. A cross-site scripting vulnerability exists in Zippy-CRM version 6.5.4 that stems from unvalidated input parameters and could lead to a reflected cross-site scripting attack...

6.1CVSS5.7AI score0.00046EPSS

Exploits1References6

Positive Technologies•added 2026/01/13 12:0 a.m.•4 views

PT-2026-2417

Name of the Vulnerable Software and Affected Versions Zippy CRM version 6.5.4 Description The software contains a reflected cross-site scripting issue that enables attackers to inject malicious scripts via unvalidated input parameters. Attackers can submit crafted payloads in manual insertion...

6.1CVSS6.3AI score0.00046EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by