CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3237 matches found

Veracode•added 2020/06/23 3:13 a.m.•24 views

Cross-Site Scripting (XSS)

css-validator is vulnerable to cross-site scripting XSS. A remote attacker is able to inject and execute arbitrary Javascript in a user's browser via the URL when an error message is displayed...

5.4CVSS3.9AI score0.00343EPSS

Exploits0References3Affected Software1

CNVD•added 2020/06/19 12:0 a.m.•1 views

IBM Rational DOORS Next Generation Cross-Site Scripting Vulnerability (CNVD-2020-36389)

IBM Rational DOORS Next Generation DNG/RRC is a suite of software for capturing, tracking, analyzing, and managing requirements from IBM in the United States. The software provides a single platform for global team collaboration to manage requirements more efficiently, sharing unified users,...

5.4CVSS6.3AI score0.00179EPSS

Exploits0References1

Veracode•added 2020/06/16 4:49 a.m.•34 views

Cross-Site Scripting (XSS)

dijit is vulnerable to cross-site scripting. A remote attacker is able to inject and execute arbitrary Javascript in a user's browser via the Editor's LinkDialog plugin...

5.4CVSS4.3AI score0.00227EPSS

Exploits0References6Affected Software1

NVD•added 2020/06/12 2:15 p.m.•15 views

CVE-2020-9648

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS0.14026EPSS

Exploits0References1

NVD•added 2020/06/12 2:15 p.m.•12 views

CVE-2020-9651

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS0.14026EPSS

Exploits0References1

OSV•added 2020/06/12 2:15 p.m.•2 views

CVE-2020-9644

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting stored vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

5.4CVSS5.9AI score0.05965EPSS

Exploits0References1

OSV•added 2020/06/12 2:15 p.m.•2 views

CVE-2020-9647

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting dom-based vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.1CVSS6.5AI score

Exploits0References1

Prion•added 2020/06/12 2:15 p.m.•16 views

Cross site scripting

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting dom-based vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

4.3CVSS6.1AI score0.14026EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/06/12 1:14 p.m.•14 views

CVE-2020-9651

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting reflected vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.2AI score0.14026EPSS

Exploits0References1

Cvelist•added 2020/06/12 1:12 p.m.•23 views

CVE-2020-9648

Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser...

6.2AI score0.14026EPSS

Exploits0References1

Tenable Nessus•added 2020/06/12 12:0 a.m.•38 views

Adobe Experience Manager 6.0 < 6.5 Multiple Vulnerabilities (APSB20-31)

The version of Adobe Experience Manager installed on the remote host is prior to 6.5. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-31 advisory. - Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery ssrf vulnerability...

7.5CVSS6.4AI score0.14026EPSS

Exploits0References7

NVD•added 2020/06/11 8:15 a.m.•9 views

CVE-2020-5592

Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors...

6.1CVSS0.00347EPSS

Exploits0References2

OSV•added 2020/06/11 8:15 a.m.•10 views

CVE-2020-5592

Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors...

6.1CVSS6.5AI score

Exploits0References2

Prion•added 2020/06/11 8:15 a.m.•17 views

Cross site scripting

Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors...

4.3CVSS6.5AI score0.00347EPSS

Exploits0References2Affected Software1

Cvelist•added 2020/06/11 7:0 a.m.•14 views

CVE-2020-5592

Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors...

6.6AI score0.00347EPSS

Exploits0References2

CNVD•added 2020/06/11 12:0 a.m.•5 views

GitLab Cross-Site Scripting Vulnerability (CNVD-2021-20277)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A cross-site scripting vulnerability exists in GitLab...

6.1CVSS6.3AI score0.00486EPSS

Exploits0References1

OSV•added 2020/06/10 3:15 p.m.•17 views

CVE-2020-13271

A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1...

6.1CVSS6.2AI score0.00274EPSS

Exploits0References3

Debian CVE•added 2020/06/10 2:25 p.m.•20 views

CVE-2020-13271

Removed by vendor...

6.1CVSS6.3AI score0.00274EPSS

Exploits0

Veracode•added 2020/06/10 3:26 a.m.•17 views

Cross-site Request Forgery (CSRF)

bolt/bolt is vulnerable to cross-site request forgery. The vulnerability exists as it accepts requests without a valid token in the preview generating endpoint in src/Controller/Frontend.php which allows an attacker to inject and execute arbitrary javascript...

8.6CVSS5.2AI score0.00674EPSS

Exploits3References6Affected Software1

CNVD•added 2020/06/10 12:0 a.m.•2 views

Adobe Experience Manager Cross-Site Scripting Vulnerability (CNVD-2020-32614)

Adobe Experience Manager is an enterprise content management solution that helps you simplify the management and delivery of your content and assets. A cross-site scripting vulnerability exists in Adobe Experience Manager. An attacker can exploit this vulnerability to execute arbitrary JavaScript...

6.1CVSS6.5AI score0.14026EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by