Lucene search
K

9 matches found

OSV
OSV
added 2026/02/03 6:16 p.m.4 views

CVE-2025-71179

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/coursebundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whic...

6.1CVSS5.8AI score0.00238EPSS
Exploits1References4
NVD
NVD
added 2026/02/03 6:16 p.m.11 views

CVE-2025-71179

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/coursebundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whic...

6.1CVSS0.00238EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/03 12:0 a.m.4 views

CVE-2025-71179

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/coursebundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whic...

5.3AI score0.00238EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.4 views

PT-2026-5991

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/course bundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whi...

6.1CVSS5.2AI score0.0202EPSS
Exploits4References7
EUVD
EUVD
added 2026/02/03 12:0 a.m.5 views

EUVD-2025-206696

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/coursebundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whic...

6.1CVSS5.3AI score0.0202EPSS
Exploits4References4
CVE
CVE
added 2026/02/03 12:0 a.m.12 views

CVE-2025-71179

CVE-2025-71179 affects Creativeitem Academy LMS 7.0 and describes reflected XSS vulnerabilities. Exploitable via the search parameter on /academy/blogs and the string parameter on /academy/course_bundles/search/query. The entry notes these flaws are distinct from the CVE-2023-4119 fix affecting /...

6.1CVSS5.3AI score0.00238EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/02/03 12:0 a.m.26 views

CVE-2025-71179

Creativeitem Academy LMS 7.0 contains reflected Cross-Site Scripting XSS vulnerabilities via the search parameter to the /academy/blogs endpoint, and the string parameter to the /academy/coursebundles/search/query endpoint. These vulnerabilities are distinct from the patch for CVE-2023-4119, whic...

0.00238EPSS
Exploits1References3
NVD
NVD
added 2008/08/20 4:41 p.m.19 views

CVE-2008-3735

Cross-site scripting XSS vulnerability in index.php in PHPizabi before 848 Core HotFix Pack 3 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a blogs.search action...

4.3CVSS5.7AI score0.01068EPSS
Exploits1References3
Cvelist
Cvelist
added 2008/08/20 4:0 p.m.21 views

CVE-2008-3735

Cross-site scripting XSS vulnerability in index.php in PHPizabi before 848 Core HotFix Pack 3 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a blogs.search action...

5.7AI score0.01068EPSS
Exploits1References3
Rows per page
Query Builder