CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2026/01/09 12:10 p.m.•5 views

CVE-2018-18271

XSS exists in CMS Made Simple version 2.2.7 via the m1extra parameter in an admin/moduleinterface.php "Content--News--Add Article" action...

6.1CVSS6.1AI score0.0024EPSS

Exploits1References1

CNNVD•added 2025/11/24 12:0 a.m.•2 views

Yccms 安全漏洞

Yccms is a lightweight Php-based CMS builder by Yccms team. A security vulnerability exists in Yccms version 3.4, which stems from improper neutralization of article title field input by the add and getPost functions in the ArticleAction.class.php file, which could lead to a stored cross-site...

6.1CVSS5.9AI score0.00024EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2007-1099

Malware in sbrugna...

5CVSS6.4AI score0.00596EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2010-2266

Malware in sbrugna...

7.5CVSS6.4AI score0.00423EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-5619

Malware in sbrugna...

4.3CVSS6.4AI score0.02126EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-6136

Malware in sbrugna...

7.5CVSS6.4AI score0.00414EPSS

Exploits1References5

ATTACKERKB•added 2022/02/16 12:15 p.m.•2 views

CVE-2022-23358

EasyCMS v1.6 allows for SQL injection via ArticlemAction.class.php. In the background, search terms provided by the user were not sanitized and were used directly to construct a SQL statement...

9.8CVSS7.3AI score0.00264EPSS

Exploits1References2

NVD•added 2018/06/13 7:29 p.m.•8 views

CVE-2018-12339

ArticleCMS through 2017-02-19 has XSS via an "add an article" action...

5.4CVSS5.3AI score0.00191EPSS

Exploits1References1

OSV•added 2018/06/13 7:29 p.m.•0 views

CVE-2018-12339

ArticleCMS through 2017-02-19 has XSS via an "add an article" action...

5.4CVSS5.8AI score

Exploits0References1

Cvelist•added 2008/12/30 7:0 p.m.•12 views

CVE-2008-5757

Cross-site scripting XSS vulnerability in textarea/index.php in Textpattern aka Txp CMS 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information...

5.3AI score0.00209EPSS

Exploits1References3

NVD•added 2007/10/23 9:47 p.m.•11 views

CVE-2007-5647

Multiple cross-site scripting XSS vulnerabilities in SocketKB 1.1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 artid or 2 node parameter in an article action to the default URI...

4.3CVSS5.8AI score0.02126EPSS

Exploits1References4

Cvelist•added 2007/10/23 9:0 p.m.•11 views

CVE-2007-5647

5.8AI score0.02126EPSS

Exploits1References4

Prion•added 2007/07/15 10:30 p.m.•6 views

Sql injection

SQL injection vulnerability in default.asp in enVivo!CMS allows remote attackers to execute arbitrary SQL commands via the ID parameter in an article action. NOTE: this is probably different from CVE-2005-1413.4...

7.5CVSS8.7AI score0.02219EPSS

Exploits1References8

Cvelist•added 2007/07/15 10:0 p.m.•12 views

CVE-2007-3783

8.2AI score0.0093EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by