Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2022-45849

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00429EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-13563

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00232EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/08 10:12 a.m.13 views

CVE-2025-3020

An low privileged remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into several fields of the configuration webpage with limited impact...

5.4CVSS7.3AI score0.00232EPSS
Exploits0References1
NVD
NVDadded 2025/05/06 8:15 a.m.8 views

CVE-2025-3020

An low privileged remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into several fields of the configuration webpage with limited impact...

5.4CVSS0.00232EPSS
Exploits0References1
CVE
CVEadded 2025/05/06 8:1 a.m.51 views

CVE-2025-3020

IBM Maximo Application Suite - IoT Component is listed as affected by CVE-2025-3020. Affected versions: 9.1, 9.0, 8.8, 8.7. Remediations in the IBM bulletin: upgrade to 9.1.4, 9.0.13, 8.8.23, or 8.7.27. The bulletin groups CVE-2025-3020 with other CVEs and provides high-level remediation guidance...

5.4CVSS7.3AI score0.00232EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/05/06 8:1 a.m.14 views

CVE-2025-3020 Wiesemann & Theis: Multiple W&T Products are vulnerable to cross-site-scripting

An low privileged remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into several fields of the configuration webpage with limited impact...

5.4CVSS0.00232EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/05/06 12:0 a.m.4 views

PT-2025-19900 · Wiesemann&Theis · Erp-Gateway 12X Digital Input +19

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A remote attacker with low privileges can execute arbitrary web scripts or HTML through a crafted payload injected into several fields of the configuration webpage, resulting in limited...

5.4CVSS6.7AI score0.00232EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/01/30 12:0 a.m.2 views

Wiesemann & Theis ComServer Series Improper Neutralization of Input During Web Page Generation (CVE-2022-42786)

Multiple W&T Products of the ComServer Series are prone to an XSS attack. An authenticated remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into the title of the configuration webpage This plugin only works with Tenable.ot. Please visit...

5.4CVSS6.1AI score0.00429EPSS
Exploits0References2
Cvelist
Cvelistadded 2022/11/10 11:2 a.m.32 views

CVE-2022-42786 Wiesemann & Theis: XSS vulnerability in web interface of the Com-Server family

Multiple W&T Products of the ComServer Series are prone to an XSS attack. An authenticated remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into the title of the configuration webpage...

5.4CVSS5.6AI score0.00429EPSS
Exploits0References1
CVE
CVEadded 2022/11/10 11:2 a.m.55 views

CVE-2022-42786

CVE-2022-42786 concerns the Wiesemann & Theis ComServer Series web interface. The vulnerability is an XSS flaw in the configuration webpage title, allowing an authenticated remote attacker to inject and execute arbitrary web scripts/HTML. The root cause is described in a few sources as an imprope...

5.4CVSS5.5AI score0.00429EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder