CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

43 matches found

RedhatCVE•added 2026/03/27 2:24 p.m.•5 views

CVE-2021-27678

Cross-site scripting XSS vulnerability in Snippets in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS5.9AI score0.0014EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 11:29 a.m.•3 views

CVE-2021-27677

Cross-site scripting XSS vulnerability in Galleries in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS5.9AI score0.0014EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-14421

Malware in sbrugna...

5.4CVSS5.5AI score0.00123EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-14419

Malware in sbrugna...

5.4CVSS5.5AI score0.0014EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-14420

Malware in sbrugna...

5.4CVSS5.5AI score0.0014EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-28664

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00277EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 6:28 p.m.•6 views

CVE-2021-27679

Cross-site scripting XSS vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS5.9AI score0.00123EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 5:10 p.m.•4 views

CVE-2020-35734

Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection and consequently Remote Code Execution via the input fields of the Users tab. To exploit this, one must login to the administration panel and edit an arbitrary user's data username, displayed name, etc.. NOTE: This...

7.2CVSS7.5AI score0.05032EPSS

Exploits4

NVD•added 2022/03/01 11:15 p.m.•12 views

CVE-2021-41652

Insecure permissions in the file database.sdb of BatFlat CMS v1.3.6 allows attackers to dump the entire database...

7.5CVSS0.00277EPSS

Exploits0References2

OSV•added 2022/03/01 11:15 p.m.•1 views

CVE-2021-41652

Insecure permissions in the file database.sdb of BatFlat CMS v1.3.6 allows attackers to dump the entire database...

7.5CVSS7.1AI score0.00277EPSS

Exploits0References2

CVE•added 2022/03/01 10:38 p.m.•83 views

CVE-2021-41652

CVE-2021-41652 affects BatFlat CMS v1.3.6. The vulnerability arises from insecure permissions on the file database.sdb, allowing an attacker to dump the entire database. Affected component: database.sdb within BatFlat CMS (v1.3.6). Underlying cause: improper file permissions that expose database ...

7.5CVSS7.4AI score0.00277EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/03/01 12:0 a.m.•1 views

BatFlat CMS 安全漏洞

Paweł Klockiewicz Batflat CMS is a Paweł Klockiewicz open source application. It provides a CMS website functionality. A security vulnerability exists in BatFlat CMS, which allows an attacker to exploit the vulnerability to dump an entire database...

7.5CVSS7.4AI score0.00277EPSS

Exploits0References3

CNVD•added 2021/03/12 12:0 a.m.•3 views

Batflat Cross-Site Scripting Vulnerability (CNVD-2021-18015)

Batflat is a simple, lightweight content management system CMS. A cross-site scripting vulnerability exists in Galleries in Batflat 1.3.6. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via field names...

5.4CVSS6AI score0.0014EPSS

Exploits1References1

CNVD•added 2021/03/12 12:0 a.m.•5 views

Batflat cross-site scripting vulnerability (CNVD-2021-17743)

Batflat is a simple, lightweight content management system CMS. A cross-site scripting vulnerability exists in Snippets in Batflat 1.3.6, which can be exploited by a remote attacker to inject arbitrary web script or HTML via a field name...

5.4CVSS6AI score0.0014EPSS

Exploits1References1

CNVD•added 2021/03/12 12:0 a.m.•5 views

Batflat Cross-Site Scripting Vulnerability

Batflat is a simple, lightweight content management system CMS. A cross-site scripting vulnerability exists in "Navigation" in Batflat 1.3.6, which can be exploited by remote attackers to inject arbitrary web script or HTML via a field name...

5.4CVSS6AI score0.00123EPSS

Exploits1References1

OSV•added 2021/03/11 5:15 p.m.•1 views

CVE-2021-27679

Cross-site scripting XSS vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS6.2AI score0.00123EPSS

Exploits1References1

NVD•added 2021/03/11 5:15 p.m.•15 views

CVE-2021-27679

Cross-site scripting XSS vulnerability in Navigation in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS0.00123EPSS

Exploits1References1

OSV•added 2021/03/11 5:15 p.m.•0 views

CVE-2021-27678

Cross-site scripting XSS vulnerability in Snippets in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS6.2AI score0.0014EPSS

Exploits1References1

NVD•added 2021/03/11 5:15 p.m.•7 views

CVE-2021-27678

Cross-site scripting XSS vulnerability in Snippets in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS0.0014EPSS

Exploits1References1

OSV•added 2021/03/11 5:15 p.m.•1 views

CVE-2021-27677

Cross-site scripting XSS vulnerability in Galleries in Batflat CMS 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the field name...

5.4CVSS5.9AI score0.0014EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by