CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

404 matches found

CVE•added 2025/04/22 12:31 a.m.•57 views

CVE-2025-3855

Summary of CVE-2025-3855 (CodeCanyon RISE Ultimate Project Manager 3.8.2) A vulnerability exists in the component “Profile Picture Handler” for the endpoint /index.php/team_members/save_profile_image/ where the argument profile_image_file is manipulated, leading to improper control of resource id...

5.3CVSS4.8AI score0.0024EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2025/04/22 12:0 a.m.•3 views

PT-2025-17477 · Unknown · Codecanyon Rise Ultimate Project Manager

Name of the Vulnerable Software and Affected Versions: CodeCanyon RISE Ultimate Project Manager version 3.8.2 Description: A problem was found in the file /index.php/team members/save profile image/ of the component Profile Picture Handler. The manipulation of the argument profile image file lead...

5.3CVSS4.6AI score0.0024EPSS

Exploits1References11

CNNVD•added 2025/04/21 12:0 a.m.•2 views

CodeCanyon RISE Ultimate Project Manager 安全漏洞

CodeCanyon RISE Ultimate Project Manager is a project management and CRM software from CodeCanyon USA. A security vulnerability exists in CodeCanyon RISE Ultimate Project Manager version 3.8.2, which stems from an improper resource identifier control in file /index.php/teammembers/saveprofileimag...

5.3CVSS5AI score0.0024EPSS

Exploits1References1

RedhatCVE•added 2025/04/06 7:33 a.m.•11 views

CVE-2025-3219

A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It has been classified as problematic. Affected is an unknown function of the file /perfex/clients/project/2 of the component Project Discussions Module. The manipulation of the argument description leads to cross site scripting. It is...

5.4CVSS6.3AI score0.00259EPSS

Exploits1References1

NVD•added 2025/04/04 8:15 a.m.•9 views

CVE-2025-3219

5.4CVSS0.00259EPSS

Exploits1References4

OSV•added 2025/04/04 8:15 a.m.•0 views

CVE-2025-3219

5.4CVSS3.7AI score

Exploits0References4

Cvelist•added 2025/04/04 7:31 a.m.•21 views

CVE-2025-3219 CodeCanyon Perfex CRM Project Discussions Module 2 cross site scripting

5.1CVSS0.00259EPSS

Exploits1References4

Vulnrichment•added 2025/04/04 7:31 a.m.•12 views

CVE-2025-3219 CodeCanyon Perfex CRM Project Discussions Module 2 cross site scripting

5.1CVSS6.4AI score0.00259EPSS

Exploits1References4

CVE•added 2025/04/04 7:31 a.m.•49 views

CVE-2025-3219

The CVE-2025-3219 entry concerns CodeCanyon Perfex CRM 3.2.1. Affected is an unknown function in the file /perfex/clients/project/2 within the Project Discussions Module. The issue is a cross‑site scripting vulnerability triggered by manipulation of the argument description, with remote exploitat...

5.4CVSS6.4AI score0.00259EPSS

Exploits1References4Affected Software1

CNNVD•added 2025/04/04 12:0 a.m.•2 views

CodeCanyon Perfex CRM 代码注入漏洞

CodeCanyon Perfex CRM is a self-hosted customer relationship management software from CodeCanyon. A code injection vulnerability exists in CodeCanyon Perfex CRM version 3.2.1, which stems from the fact that incorrect manipulation of the parameter description can lead to cross-site scripting...

5.4CVSS4.7AI score0.00259EPSS

Exploits1References4

Positive Technologies•added 2025/04/04 12:0 a.m.•2 views

PT-2025-14865 · Unknown · Codecanyon Perfex Crm

Name of the Vulnerable Software and Affected Versions: CodeCanyon Perfex CRM version 3.2.1 Description: A vulnerability was found in CodeCanyon Perfex CRM. It has been classified as problematic. Affected is an unknown function of the file /perfex/clients/project/2 of the component Project...

5.1CVSS3.5AI score0.00259EPSS

Exploits1References10

RedhatCVE•added 2025/04/02 3:32 a.m.•7 views

CVE-2025-2974

A vulnerability has been found in CodeCanyon Perfex CRM up to 3.2.1 and classified as problematic. This vulnerability affects unknown code of the file /contract of the component Contracts. The manipulation of the argument content leads to cross site scripting. The attack can be initiated remotely...

5.4CVSS6.7AI score0.00339EPSS

Exploits1References1

CVE•added 2025/03/31 3:31 a.m.•59 views

CVE-2025-2974

CVE-2025-2974 affects CodeCanyon Perfex CRM (up to version 3.2.1). The vulnerability lies in the Contracts module, specifically the /contract code, where manipulation of input content enables cross-site scripting (XSS). Exploitation can be remote, and multiple sources note public disclosure of th...

5.4CVSS6.6AI score0.00339EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2025/03/31 3:31 a.m.•6 views

CVE-2025-2974 CodeCanyon Perfex CRM Contracts contract cross site scripting

5.1CVSS6.4AI score0.00339EPSS

Exploits1References4

Cvelist•added 2025/03/31 3:31 a.m.•16 views

CVE-2025-2974 CodeCanyon Perfex CRM Contracts contract cross site scripting

5.1CVSS0.00339EPSS

Exploits1References4

NVD•added 2024/09/20 12:15 p.m.•11 views

CVE-2024-9031

A vulnerability, which was classified as problematic, has been found in CodeCanyon CRMGo SaaS up to 7.2. This issue affects some unknown processing of the file /project/task/taskid/show. The manipulation of the argument comment leads to cross site scripting. The attack may be initiated remotely...

5.4CVSS0.00129EPSS

Exploits0References4

OSV•added 2024/09/20 12:15 p.m.•1 views

CVE-2024-9031

5.4CVSS3.8AI score

Exploits0References4

NVD•added 2024/09/20 12:15 p.m.•10 views

CVE-2024-9030

A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/noteid/note. The manipulation of the argument notes leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to th...

5.4CVSS0.00166EPSS

Exploits1References3

OSV•added 2024/09/20 12:15 p.m.•0 views

CVE-2024-9030

5.4CVSS3.8AI score

Exploits0References3

Cvelist•added 2024/09/20 12:0 p.m.•15 views

CVE-2024-9031 CodeCanyon CRMGo SaaS show cross site scripting

5.3CVSS0.00129EPSS

Exploits0References4

Rows per page