Lucene search
K

10 matches found

NVD
NVD
added 2026/02/08 3:15 p.m.10 views

CVE-2026-2156

A weakness has been identified in code-projects Online Student Management System 1.0. The impacted element is an unknown function of the file /admin/announcement/index.php?view=add of the component Announcement Management Module. This manipulation causes cross site scripting. The attack is possib...

4.8CVSS0.00198EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/08 2:32 p.m.9 views

CVE-2026-2156

A weakness has been identified in code-projects Online Student Management System 1.0. The impacted element is an unknown function of the file /admin/announcement/index.php?view=add of the component Announcement Management Module. This manipulation causes cross site scripting. The attack is possib...

4.8CVSS3.4AI score0.00198EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-47871

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.01046EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:59 p.m.7 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pagesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title field...

5.4CVSS5.8AI score0.01046EPSS
Exploits1References1
NVD
NVD
added 2022/12/02 8:15 p.m.15 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pages&entitiesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

5.4CVSS0.01046EPSS
Exploits1References1
Prion
Prion
added 2022/12/02 8:15 p.m.17 views

Cross site scripting

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pages&entitiesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

4.9CVSS5.3AI score0.01046EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/02 12:0 a.m.3 views

PT-2022-27343 · Unknown · Rukovoditel

Name of the Vulnerable Software and Affected Versions: Rukovoditel version 3.2.1 Description: The issue is related to a stored cross-site scripting XSS vulnerability in the Add Announcement function at "/index.php?module=help pages/pages&entities id=24". This allows attackers to execute arbitrary...

5.4CVSS5.1AI score0.01046EPSS
Exploits1References7
Cvelist
Cvelist
added 2022/12/02 12:0 a.m.24 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pages&entitiesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

5.5AI score0.01046EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/12/02 12:0 a.m.6 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pages&entitiesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

5.8AI score0.01046EPSS
Exploits1References1
CVE
CVE
added 2021/05/28 8:10 a.m.43 views

CVE-2021-32540

Hundred Plus 101EIP system (cloud-based office platform) contains a stored XSS vulnerability in its bulletin feature due to lack of input filtering of special characters. The issue allows authenticated users to inject JavaScript, leading to stored XSS. Affected component: 101EIP bulletin/announce...

5.4CVSS5.1AI score0.00456EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder