CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

868 matches found

CNVD•added 2020/05/14 12:0 a.m.•1 views

SUSE openSUSE Cross-Site Scripting Vulnerability

openSUSE is a set of Linux-based free operating system and open source community project of the German SUSE company. A cross-site scripting vulnerability exists in previous versions of SUSE openSUSE open-build-service 7cc32c8e2ff7290698e101d9a80a9dc29a5500fb. The vulnerability stems from a lack o...

6.5CVSS6.4AI score0.0022EPSS

Exploits0References1

CNVD•added 2020/05/06 12:0 a.m.•7 views

Wiki.js Cross-Site Scripting Vulnerability

Wiki.js is Requarks.io team of a set of Node.js-based and written in JavaScript language open source Wiki software . A cross-site scripting vulnerability exists in the Markdown borderer in Wiki.js versions prior to 2.3.81. The vulnerability stems from a lack of proper validation of client-side da...

6.9CVSS6.1AI score0.00323EPSS

Exploits0References1

CNVD•added 2020/05/06 12:0 a.m.•7 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2021-28035)

NETGEAR R9000, R7800 and R7500 are a wireless router from NETGEAR. A cross-site scripting vulnerability exists in multiple NETGEAR products. The vulnerability stems from the lack of proper validation of client data by the WEB application. An attacker can exploit this vulnerability to execute...

6.1CVSS6.1AI score0.00191EPSS

Exploits0References1

CNVD•added 2020/04/30 12:0 a.m.•82 views

jQuery cross-site scripting vulnerability (CNVD-2021-26411)

jQuery is a set of open source , cross-browser JavaScript library . The library simplifies the operation between HTML and JavaScript , and has a modular , plug-in extensions and other features . A cross-site scripting vulnerability exists in versions of jQuery prior to 3.5.0. The vulnerability...

6.9CVSS7.1AI score0.02456EPSS

Exploits7References1

CNVD•added 2020/04/29 12:0 a.m.•2 views

Opmantek Open-AudIT Cross-Site Scripting Vulnerability

Opmantek Open-AudIT is an open source network discovery and auditing program from Opmantek USA. The program intelligently scans networks and network devices and provides status reports. A cross-site scripting vulnerability exists in Opmantek Open-AudIT version 3.3.0. The vulnerability stems from...

5.4CVSS6.4AI score0.00346EPSS

Exploits4References1

CNVD•added 2020/04/29 12:0 a.m.•6 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2021-28014)

NETGEAR JNR1010 and others are a wireless router from NETGEAR. A cross-site scripting vulnerability exists in multiple NETGEAR products. The vulnerability stems from the lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute...

4.8CVSS6.2AI score0.00321EPSS

Exploits0References1

CNVD•added 2020/04/29 12:0 a.m.•1 views

Lexmark Pro910 Cross-Site Scripting Vulnerability

The Lexmark Pro910 is a Pro910 printer from Lexmark USA. A cross-site scripting vulnerability exists in the Lexmark Pro910 series. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerability to execute client-side...

5.4CVSS6.4AI score0.00352EPSS

Exploits0

CNVD•added 2020/04/29 12:0 a.m.•7 views

PHP-Fusion cross-site scripting vulnerability (CNVD-2021-26414)

PHP-Fusion is a Malaysian company PHP-Fusion open source lightweight content management system based on MySql and PHP . The system contains modules such as news, articles and forums. A cross-site scripting vulnerability exists in the banners.php file in PHP-Fusion version 9.03.50. The vulnerabili...

5.4CVSS6.2AI score0.00281EPSS

Exploits1References1

CNVD•added 2020/04/28 12:0 a.m.•2 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-28143)

NETGEAR D7800 and others are products of NETGEAR Corporation.NETGEAR D7800 is a wireless modem.NETGEAR R7500 is a wireless router.NETGEAR WNDR4300 is a wireless router.NETGEAR WNDR4300 is a wireless router. A cross-site scripting vulnerability exists in multiple NETGEAR products. The vulnerabilit...

6.3CVSS6.4AI score0.00191EPSS

Exploits0References1

CNVD•added 2020/04/28 12:0 a.m.•1 views

Grafana Cross-Site Scripting Vulnerability (CNVD-2020-32431)

Grafana is a set of open source monitoring tools from Grafana Labs that provide a visual monitoring interface. The tool is primarily used to monitor and analyze Graphite, InfluxDB, and Prometheus, among others. A cross-site scripting vulnerability exists in Grafana versions prior to 6.7.3. The...

6.1CVSS6.6AI score0.00716EPSS

Exploits0References1

CNVD•added 2020/04/24 12:0 a.m.•2 views

BigBlueButton Cross-Site Scripting Vulnerability

BigBlueButton is BigBlueButton community of a set of open source Web conferencing system . A cross-site scripting vulnerability exists in BigBlueButton versions prior to 2.2.4. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can...

6.1CVSS6.3AI score0.00412EPSS

Exploits0References1

CNVD•added 2020/04/23 12:0 a.m.•11 views

jQuery cross-site scripting vulnerability (CNVD-2021-28726)

jQuery is a set of open source , cross-browser JavaScript library . The library simplifies the operation between HTML and JavaScript , and has a modular , plug-in extensions and other features . A cross-site scripting vulnerability exists in jQuery version 2.2.2. The vulnerability stems from a la...

6.1CVSS5.8AI score0.00298EPSS

Exploits0References1

CNVD•added 2020/04/23 12:0 a.m.•2 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-31239)

NETGEAR D6200 and others are products of NETGEAR Corporation.NETGEAR D6200 is a wireless modem.NETGEAR WNR2020 is a wireless router.NETGEAR R6220 is a wireless router.NETGEAR WNR2020 is a wireless router.NETGEAR WNR2020 is a wireless router.NETGEAR WNR2020 is a wireless router.NETGEAR WNR2020 is ...

6.1CVSS6.4AI score0.00185EPSS

Exploits0References1

CNVD•added 2020/04/23 12:0 a.m.•1 views

SAP NetWeaver AS ABAP Business Server Cross-Site Scripting Vulnerability (CNVD-2020-32898)

SAP NetWeaver AS ABAP Business Server is an application server for ABAP Advanced Business Application Programming from SAP, Germany. A cross-site scripting vulnerability exists in SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXTPHTMLB. The vulnerability stems from the WEB...

6.1CVSS6.3AI score0.00191EPSS

Exploits0References1

CNVD•added 2020/04/23 12:0 a.m.•3 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-31240)

NETGEAR WNR3500L and others are products of NETGEAR.WNR3500L is a wireless router.NETGEAR R6400 is a wireless router.NETGEAR D6200 is a wireless modem.NETGEAR R6400 is a wireless router.NETGEAR R6400 is a wireless router.NETGEAR R6400 is a wireless router.NETGEAR R6400 is a wireless router.NETGEA...

4.8CVSS6.4AI score0.00063EPSS

Exploits0References1

CNVD•added 2020/04/22 12:0 a.m.•25 views

NETGEAR R6700v2 and R6800 Cross-Site Scripting Vulnerability

The NETGEAR R6700v2 and NETGEAR R6800 are both a wireless router from NETGEAR. A cross-site scripting vulnerability exists in the NETGEAR R6700v2 prior to version 1.1.0.42 and the R6800 prior to version 1.1.0.42. The vulnerability stems from a lack of proper validation of client data by the WEB...

6.1CVSS6AI score0.00208EPSS

Exploits0References1

CNVD•added 2020/04/22 12:0 a.m.•1 views

NETGEAR ReadyNAS OS xss Vulnerability (CNVD-2020-74064)

NETGEAR ReadyNAS OS is a set of operating systems for ReadyNAS network attached storage devices from NETGEAR. A cross-site scripting vulnerability exists in NETGEAR ReadyNAS OS 6 versions prior to 6.8.0. The vulnerability stems from a lack of proper validation of client data by the WEB applicatio...

5.2CVSS6.3AI score0.00167EPSS

Exploits0References1

CNVD•added 2020/04/21 12:0 a.m.•3 views

Cross-site scripting vulnerability in multiple NETGEAR products (CNVD-2020-42022)

NETGEAR M4300-28G and others are a managed switch from NETGEAR. A cross-site scripting vulnerability exists in multiple NETGEAR products. The vulnerability stems from the lack of proper validation of client data by the WEB application. An attacker can exploit this vulnerability to execute...

5.2CVSS6.4AI score0.0019EPSS

Exploits0References1

CNVD•added 2020/04/20 12:0 a.m.•1 views

OpenMRS Cross-Site Scripting Vulnerability (CNVD-2020-24049)

OpenMRS is an open source electronic medical record system from OpenMRS, Inc. in the United States. A cross-site scripting vulnerability exists in OpenMRS. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerabili...

6.1CVSS6.4AI score0.00328EPSS

Exploits1

CNVD•added 2020/04/20 12:0 a.m.•1 views

OpenMRS Cross-Site Scripting Vulnerability (CNVD-2020-26249)

OpenMRS is an open source electronic medical record system from OpenMRS, Inc. in the United States. OpenMRS suffers from a cross-site scripting vulnerability that stems from a UI framework error page reflecting arbitrary user-supplied input back to the browser. An attacker can exploit this...

6.1CVSS6.5AI score0.00328EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by