CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-19386

Malware in sbrugna...

5.4CVSS5.5AI score0.00235EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-47871

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00929EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 9:59 p.m.•4 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pagesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title field...

5.4CVSS5.8AI score0.00929EPSS

Exploits1References1

OSV•added 2022/12/02 8:15 p.m.•1 views

CVE-2022-44944

Rukovoditel v3.2.1 was discovered to contain a stored cross-site scripting XSS vulnerability in the Add Announcement function at /index.php?module=helppages/pages&entitiesid=24. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the...

5.4CVSS5.9AI score

Exploits0References2

Prion•added 2022/12/02 8:15 p.m.•13 views

Cross site scripting

4.9CVSS5.3AI score0.00929EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2022/12/02 12:0 a.m.•6 views

CVE-2022-44944

5.8AI score0.00929EPSS

Exploits1References2

OSV•added 2021/05/28 8:15 a.m.•1 views

CVE-2021-32540

Add announcement function in the 101EIP system does not filter special characters, which allows authenticated users to inject JavaScript and perform a stored XSS attack...

5.4CVSS6.1AI score

Exploits0References1

Prion•added 2021/05/28 8:15 a.m.•9 views

Cross site scripting

Add announcement function in the 101EIP system does not filter special characters, which allows authenticated users to inject JavaScript and perform a stored XSS attack...

3.5CVSS5.1AI score0.00235EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/05/28 8:10 a.m.•9 views

CVE-2021-32540 Hundred Plus 101EIP - Stored XSS-2

Add announcement function in the 101EIP system does not filter special characters, which allows authenticated users to inject JavaScript and perform a stored XSS attack...

5.4CVSS5.3AI score0.00235EPSS

Exploits0References1

CVE•added 2021/05/28 8:10 a.m.•38 views

CVE-2021-32540

Hundred Plus 101EIP system (cloud-based office platform) contains a stored XSS vulnerability in its bulletin feature due to lack of input filtering of special characters. The issue allows authenticated users to inject JavaScript, leading to stored XSS. Affected component: 101EIP bulletin/announce...

5.4CVSS5.1AI score0.00235EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by