CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

66 matches found

CNNVD•added 2024/10/29 12:0 a.m.•2 views

pb-cms 跨站脚本漏洞

pb-cms waterfall content management system is a content management system by LinZhaoguan personal developer. A cross-site scripting vulnerability exists in versions prior to pb-cms 2.0.1, which originates from the file /adminarticle/edit?id=2 of the component Edit Article Handler that can lead to...

5.4CVSS3.8AI score0.00162EPSS

Exploits1References3

OSV•added 2024/08/25 6:15 a.m.•5 views

CVE-2024-8145

A vulnerability, which was classified as problematic, has been found in ClassCMS 4.8. Affected by this issue is some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the argument Title leads to basic cross site scripting. The attack may be...

4.8CVSS6.1AI score

Exploits0References4

NVD•added 2024/08/25 6:15 a.m.•9 views

CVE-2024-8145

5.1CVSS0.00102EPSS

Exploits1References4

Cvelist•added 2024/08/25 5:31 a.m.•21 views

CVE-2024-8145 ClassCMS Article admin cross site scripting

5.1CVSS0.00102EPSS

Exploits1References4

Vulnrichment•added 2024/08/25 5:31 a.m.•10 views

CVE-2024-8145 ClassCMS Article admin cross site scripting

5.1CVSS6.4AI score0.00102EPSS

Exploits1References4

Positive Technologies•added 2024/08/24 12:0 a.m.•2 views

PT-2024-38834 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: A vulnerability has been found in ClassCMS, affecting some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the Title argument leads to basic cross-site...

5.1CVSS4.1AI score0.00102EPSS

Exploits1References15

OSV•added 2023/12/13 4:15 p.m.•0 views

CVE-2023-6762

A vulnerability, which was classified as critical, was found in Thecosy IceCMS 2.0.1. Affected is an unknown function of the file /article/DelectArticleById/ of the component Article Handler. The manipulation leads to permission issues. It is possible to launch the attack remotely. The exploit ha...

4.3CVSS5.3AI score

Exploits0References3

Cvelist•added 2023/12/13 4:0 p.m.•17 views

CVE-2023-6762 Thecosy IceCMS Article permission

5.5CVSS5.8AI score0.00091EPSS

Exploits1References3

CNNVD•added 2023/12/13 12:0 a.m.•1 views

IceCMS Authorization Issues Vulnerability

IceCMS is a content management system based on Spring Boot + Vue front-end and back-end separation of NgShow individual developers. IceCMS 2.0.1 version of the authorization problem vulnerability , the vulnerability stems from the Article Handler component of the /article/DelectArticleById/ there...

5.5CVSS6.8AI score0.00091EPSS

Exploits1References4

CNVD•added 2023/08/10 12:0 a.m.•17 views

DedeBIZ Cross-Site Scripting Vulnerability

DedeBIZ is a content management system from China Muyun Intelligent Technology DedeBIZ company. A cross-site scripting vulnerability exists in DedeBIZ version 6.2.10, which stems from the Article Handler component can lead to cross-site scripting vulnerability. No detailed vulnerability details a...

4.8CVSS6AI score0.00081EPSS

Exploits1References1

OSV•added 2023/08/05 7:15 p.m.•16 views

CVE-2023-4170

A vulnerability was found in DedeBIZ 6.2.10. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Article Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public a...

4.8CVSS6.2AI score

Exploits0References3

NVD•added 2023/08/05 7:15 p.m.•10 views

CVE-2023-4170

4.8CVSS4AI score0.00081EPSS

Exploits1References3

Prion•added 2023/08/05 7:15 p.m.•15 views

Cross site scripting

4CVSS4.7AI score0.00081EPSS

Exploits1References3Affected Software1

CVE•added 2023/08/05 6:31 p.m.•145 views

CVE-2023-4170

DedeBIZ 6.2.10 is affected, with the Article Handler component enabling cross-site scripting. The issue is exploitable remotely and is publicly disclosed (CVE-2023-4170, VDB-236186). Red Hat/EUVD/CNVD/CVE records corroborate XSS in this version. Root cause detail is not disclosed in the documents...

4.8CVSS4.2AI score0.00081EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2023/08/05 12:0 a.m.•3 views

PT-2023-28055 · Dedebiz · Dedebiz

Name of the Vulnerable Software and Affected Versions: DedeBIZ version 6.2.10 Description: A vulnerability was found in the Article Handler component, which can be exploited to lead to cross site scripting. The attack may be launched remotely. The vendor was contacted early about this disclosure...

4.8CVSS6AI score0.00081EPSS

Exploits1References8

CNNVD•added 2023/08/05 12:0 a.m.•3 views

DedeBIZ 跨站脚本漏洞

4.8CVSS6.1AI score0.00081EPSS

Exploits1References4

Github Security Blog•added 2022/12/22 12:30 a.m.•20 views

Mingsoft MCMS Cross-site Scripting vulnerability

A vulnerability has been found in Mingsoft MCMS 5.2.9 and classified as problematic. Affected by this vulnerability is the function save of the component Article Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the...

5.4CVSS5.4AI score0.00177EPSS

Exploits1References4Affected Software1

OSV•added 2022/12/22 12:30 a.m.•17 views

GHSA-6RVV-H8G7-728W Mingsoft MCMS Cross-site Scripting vulnerability

5.4CVSS4.3AI score0.00177EPSS

Exploits1References3

OSV•added 2022/12/21 10:15 p.m.•16 views

CVE-2022-4640

5.4CVSS5.2AI score

Exploits0References2

Vulnrichment•added 2022/12/21 12:0 a.m.•3 views

CVE-2022-4640 Mingsoft MCMS Article save cross site scripting