CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2673 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-11970

Malware in sbrugna...

5.4CVSS5.4AI score0.00208EPSS

Exploits2References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-11508

Malware in sbrugna...

4.8CVSS5.2AI score0.00225EPSS

Exploits1References2

Vulnrichment•added 2025/10/07 12:0 a.m.•3 views

CVE-2025-60312

Sourcecodester Markdown to HTML Converter v1.0 is vulnerable to a Cross-Site Scripting XSS in the "Markdown Input" field, allowing a remote attacker to inject arbitrary HTML/JavaScript code that executes in the victim's browser upon clicking the "Convert to HTML" button...

5.8AI score0.00044EPSS

Exploits1References2

CVE•added 2025/10/06 6:40 a.m.•9 views

CVE-2025-9913

CVE-2025-9913 describes a cross-site scripting issue where JavaScript can be executed from the address bar via the dashboard’s “Open in new Tab” button, enabling session hijacking. Affected product family includes SICK Enterprise Analytics and related SICK analytics dashboards (e.g., SICK Baggage...

6.1CVSS6.5AI score0.00058EPSS

Exploits0References6Affected Software4

Cvelist•added 2025/10/06 6:40 a.m.•5 views

CVE-2025-9913 Cross Site Scripting: Session Hijacking

JavaScript can be ran inside the address bar via the dashboard "Open in new Tab" Button, making the application vulnerable to session hijacking...

4.5CVSS0.00058EPSS

Exploits0References6

Vulnrichment•added 2025/10/06 6:40 a.m.•2 views

CVE-2025-9913 Cross Site Scripting: Session Hijacking

JavaScript can be ran inside the address bar via the dashboard "Open in new Tab" Button, making the application vulnerable to session hijacking...

4.5CVSS6.5AI score0.00058EPSS

Exploits0References6

ATTACKERKB•added 2025/10/06 6:40 a.m.•1 views

CVE-2025-9913

JavaScript can be ran inside the address bar via the dashboard "Open in new Tab" Button, making the application vulnerable to session hijacking...

6.1CVSS5.8AI score0.00058EPSS

Exploits0References7

EUVD•added 2025/10/06 6:40 a.m.•3 views

EUVD-2025-32503

JavaScript can be ran inside the address bar via the dashboard "Open in new Tab" Button, making the application vulnerable to session hijacking...

4.5CVSS6.4AI score0.00058EPSS

Exploits0References7

Positive Technologies•added 2025/10/06 12:0 a.m.•3 views

PT-2025-40856

Name of the Vulnerable Software and Affected Versions Dashboard affected versions not specified Description The application is susceptible to session hijacking due to the execution of JavaScript code within the address bar. This is possible through the dashboard's "Open in new Tab" button. This...

4.5CVSS6.6AI score0.00058EPSS

Exploits0References10

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-34392

Malicious code in bioql PyPI...

6.4CVSS8.9AI score0.00225EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-50959

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00768EPSS

Exploits0References2