CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-8193

Malware in sbrugna...

4.8CVSS5.1AI score0.00235EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-2369

Malware in sbrugna...

8.8CVSS8.8AI score0.00134EPSS

Exploits1References2

CNVD•added 2018/09/04 12:0 a.m.•2 views

ChemCMS Cross-Site Scripting Vulnerability

ChemCMS is a chemical-based web content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in ChemCMS version 1.0.6, which can be exploited by remote attackers to insert and execute JavaScript code with the help of the 'Settings-Site Info' field...

4.8CVSS5.1AI score0.00235EPSS

Exploits1References1

NVD•added 2018/09/02 6:29 p.m.•5 views

CVE-2018-16346

ChemCMS 1.0.6 has XSS via the "setting - website information" field...

4.8CVSS5AI score0.00235EPSS

Exploits1References1

OSV•added 2018/09/02 6:29 p.m.•8 views

CVE-2018-16346

ChemCMS 1.0.6 has XSS via the "setting - website information" field...

4.8CVSS5.8AI score

Exploits0References1

Prion•added 2018/09/02 6:29 p.m.•9 views

Design/Logic Flaw

ChemCMS 1.0.6 has XSS via the "setting - website information" field...

3.5CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/09/02 6:0 p.m.•12 views

CVE-2018-16346

ChemCMS 1.0.6 has XSS via the "setting - website information" field...

5AI score0.00235EPSS

Exploits1References1

CVE•added 2018/09/02 6:0 p.m.•37 views

CVE-2018-16346

ChemCMS 1.0.6 is affected by a Cross-Site Scripting (XSS) vulnerability exploitable via the Settings → Site Info field. Connected CNVD and NVD records confirm the vulnerability affecting version 1.0.6 and describe the attack as injecting/executing JavaScript through the Site Info setting; no patc...

4.8CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

CNVD•added 2018/04/24 12:0 a.m.•1 views

ChemCMS Cross-Site Request Forgery Vulnerability

ChemCMS is a chemical-based web content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in ChemCMS version 1.0.6. A remote attacker can exploit this vulnerability to add an administrator account via the public/admin/user/addpost.html page...

8.8CVSS7AI score0.00134EPSS

Exploits1References1

NVD•added 2018/04/22 2:29 p.m.•6 views

CVE-2018-10295

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account...

8.8CVSS8.7AI score0.00134EPSS

Exploits1References1

OSV•added 2018/04/22 2:29 p.m.•7 views

CVE-2018-10295

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account...

8.8CVSS8.9AI score

Exploits0References1

Prion•added 2018/04/22 2:29 p.m.•9 views

Cross site request forgery (csrf)

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account...

6.8CVSS8.6AI score0.00134EPSS

Exploits1References1Affected Software1

CVE•added 2018/04/22 2:0 p.m.•32 views

CVE-2018-10295

CVE-2018-10295 affects ChemCMS v1.0.6. The vulnerability is a Cross-Site Request Forgery (CSRF) that can be exploited via the public/admin/user/addpost.html page to add an administrator account. This could enable an attacker to gain admin privileges on the affected system. The documents do not pr...

8.8CVSS8.7AI score0.00134EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/04/22 2:0 p.m.•10 views

CVE-2018-10295

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account...

8.7AI score0.00134EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by