Lucene search
+L

18 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-46128

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00473EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 12:2 a.m.8 views

CVE-2022-43079

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Train Scheduler App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS5.8AI score0.00473EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 11:13 p.m.6 views

CVE-2022-43142

A cross-site scripting XSS vulnerability in the add-fee.php component of Password Storage Application v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS5.8AI score0.00423EPSS
Exploits1References1
osv
osv
added 2024/05/06 2:15 a.m.4 views

CVE-2024-4512

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointmen...

5.4CVSS3.8AI score0.00642EPSS
Exploits1References4
osv
osv
added 2022/11/17 7:15 p.m.3 views

CVE-2022-43142

A cross-site scripting XSS vulnerability in the add-fee.php component of Password Storage Application v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS5.9AI score0.00423EPSS
Exploits1References1
nvd
nvd
added 2022/11/17 7:15 p.m.19 views

CVE-2022-43142

A cross-site scripting XSS vulnerability in the add-fee.php component of Password Storage Application v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS0.00423EPSS
Exploits1References1
prion
prion
added 2022/11/17 7:15 p.m.13 views

Cross site scripting

A cross-site scripting XSS vulnerability in the add-fee.php component of Password Storage Application v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

5.8CVSS5.9AI score0.00423EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2022/11/17 12:0 a.m.5 views

CVE-2022-43142

A cross-site scripting XSS vulnerability in the add-fee.php component of Password Storage Application v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

5.9AI score0.00423EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2022/11/17 12:0 a.m.6 views

PT-2022-26772 · Unknown · Password Storage Application

Name of the Vulnerable Software and Affected Versions: Password Storage Application version 1.0 Description: A cross-site scripting XSS vulnerability in the add-fee.php component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS5.7AI score0.00423EPSS
Exploits1References6
cnnvd
cnnvd
added 2022/11/17 12:0 a.m.3 views

Password Storage Application 跨站脚本漏洞

Password Storage Application is a password storage application by Carlo Montero Personal Developer. A security vulnerability exists in Password Storage Application v1.0, which originates from a cross-site scripting XSS vulnerability in the component add-fee.php, which allows attackers to execute...

6.1CVSS6.2AI score0.00423EPSS
Exploits1References2
osv
osv
added 2022/11/01 2:15 p.m.5 views

CVE-2022-43078

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

4.8CVSS5.9AI score0.00457EPSS
Exploits1References1
osv
osv
added 2022/11/01 2:15 p.m.3 views

CVE-2022-43079

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Train Scheduler App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS5.9AI score0.00473EPSS
Exploits1References1
nvd
nvd
added 2022/11/01 2:15 p.m.22 views

CVE-2022-43078

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

4.8CVSS0.00457EPSS
Exploits1References1
prion
prion
added 2022/11/01 2:15 p.m.16 views

Cross site scripting

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Train Scheduler App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

5.8CVSS5.9AI score0.00473EPSS
Exploits1References1Affected Software1
cnnvd
cnnvd
added 2022/11/01 12:0 a.m.4 views

Web-Based Student Clearance System 跨站脚本漏洞

Web-Based Student Clearance System is a web-based student clearance system by the individual developer Ndueso Okorie. A cross-site scripting vulnerability exists in Web-Based Student Clearance System version v1.0, which originates from a cross-site scripting XSS vulnerability contained in...

4.8CVSS5.3AI score0.00457EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2022/11/01 12:0 a.m.8 views

PT-2022-26741 · Unknown · Web-Based Student Clearance System

Name of the Vulnerable Software and Affected Versions: Web-Based Student Clearance System version 1.0 Description: A cross-site scripting XSS issue exists in the /admin/add-fee.php endpoint, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddep...

4.8CVSS5AI score0.00457EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2022/11/01 12:0 a.m.4 views

PT-2022-26742 · Unknown · Train Scheduler App

Name of the Vulnerable Software and Affected Versions: Train Scheduler App version 1.0 Description: A cross-site scripting XSS issue exists in the /admin/add-fee.php endpoint, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS6AI score0.00473EPSS
Exploits1References4
cnnvd
cnnvd
added 2022/11/01 12:0 a.m.4 views

Train Scheduler App 跨站脚本漏洞

Train Scheduler App is a train scheduling application by Carlo Montero Personal Developer. A security vulnerability exists in Train Scheduler App v1.0, which stems from a cross-site scripting XSS vulnerability contained in /admin/add-fee. An attacker can exploit this vulnerability to execute...

6.1CVSS6.3AI score0.00473EPSS
Exploits1References2
Rows per page
Query Builder