CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-8328

Malware in sbrugna...

6.1CVSS6.3AI score0.0155EPSS

Exploits2References6

RedhatCVE•added 2025/05/22 7:53 a.m.•4 views

CVE-2018-16519

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting XSS via URLs used by "iFrame" widgets...

6.1CVSS6AI score0.0155EPSS

Exploits2References1

OSSF Malicious Packages•added 2024/10/15 2:56 p.m.•1 views

Malicious code in @coyo/ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 986db3d3f9403677037ca5dfa1eb6cbe730fa4d3686adb30602be2c8f5747e6e The OpenSSF Package Analysis project identified '@coyo/ui' @ 2.2.3 npm as malicious. It is considered malicious because: - The package...

7.1AI score

Exploits0

OSV•added 2024/10/15 2:56 p.m.•2 views

MAL-2024-9298 Malicious code in @coyo/ui (npm)

7.3AI score

Exploits0

Snyk•added 2022/09/28 8:12 a.m.•2 views

Malicious Package

Overview ngdraggable-coyo is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

9.8CVSS7.1AI score

Exploits0References3

NVD•added 2019/03/21 4:0 p.m.•11 views

CVE-2018-16519

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting XSS via URLs used by "iFrame" widgets...

6.1CVSS6.1AI score0.0155EPSS

Exploits2References4

OSV•added 2019/03/21 4:0 p.m.•2 views

CVE-2018-16519

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting XSS via URLs used by "iFrame" widgets...

6.1CVSS5.7AI score0.0155EPSS

Exploits2References4

Prion•added 2019/03/21 4:0 p.m.•11 views

Cross site scripting

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting XSS via URLs used by "iFrame" widgets...

4.3CVSS6AI score0.0155EPSS

Exploits2References4Affected Software1

Cvelist•added 2019/03/17 9:39 p.m.•12 views

CVE-2018-16519

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting XSS via URLs used by "iFrame" widgets...

6.1AI score0.0155EPSS

Exploits2References4

CVE•added 2019/03/17 9:39 p.m.•35 views

CVE-2018-16519

CVE-2018-16519 affects COYO: versions 9.0.8, 10.0.11 and 12.0.4. The root cause is missing URL validation in COYO’s handling of URLs used by iFrame widgets, enabling cross-site scripting (XSS). Documented impact is cross-site scripting within the web application; exploitation details are not prov...

6.1CVSS6AI score0.0155EPSS

Exploits2References4Affected Software1

CNVD•added 2019/02/26 12:0 a.m.•3 views

COYO Cross-Site Scripting Vulnerability

COYO is a social intranet software. COYO suffers from a cross-site scripting vulnerability. The vulnerability is due to a lack of URL validation by the program and can be exploited by an attacker to execute javascript code in the user context using malicious use of missed access...

6.1CVSS6.6AI score0.0155EPSS

Exploits2References1

Packet Storm•added 2019/02/01 12:0 a.m.•49 views

COYO 9.0.8 / 10.0.11 / 12.0.4 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2018-032 Product: COYO Manufacturer: COYO GmbH Affected Versions: 9.0.8, 10.0.11, 12.0.4 Tested Versions: 9.0.8, 10.0.11, 10.0.33, 12.0.4 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Fixed...

6.4AI score0.0155EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by