CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-8290

Malware in sbrugna...

6.1CVSS6.3AI score0.00675EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-4872

Malware in sbrugna...

6.1CVSS6.3AI score0.00707EPSS

Exploits1References2

CNVD•added 2018/09/06 12:0 a.m.•3 views

CraftedWeb Cross-Site Scripting Vulnerability (CNVD-2018-18899)

CraftedWeb is a CMS Content Management System for game servers. A cross-site scripting vulnerability exists in CraftedWeb versions 2013-09-24 and earlier, which can be exploited by remote attackers to inject arbitrary web script or HTML with the help of the 'p' parameter...

6.1CVSS5.9AI score0.00675EPSS

Exploits1References1

NVD•added 2018/09/04 4:29 a.m.•16 views

CVE-2018-16450

CraftedWeb through 2013-09-24 has reflected XSS via the p parameter...

6.1CVSS6.1AI score0.00675EPSS

Exploits1References1

OSV•added 2018/09/04 4:29 a.m.•4 views

CVE-2018-16450

CraftedWeb through 2013-09-24 has reflected XSS via the p parameter...

6.1CVSS5.8AI score0.00675EPSS

Exploits1References1

Prion•added 2018/09/04 4:29 a.m.•13 views

Cross site scripting

CraftedWeb through 2013-09-24 has reflected XSS via the p parameter...

4.3CVSS6AI score0.00675EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/09/04 4:0 a.m.•21 views

CVE-2018-16450

CraftedWeb through 2013-09-24 has reflected XSS via the p parameter...

6.1AI score0.00675EPSS

Exploits1References1

CVE•added 2018/09/04 4:0 a.m.•42 views

CVE-2018-16450

CVE-2018-16450 concerns CraftedWeb, a CMS for game servers, with a reflected XSS vulnerability in the p parameter affecting versions up to 2013-09-24. The issue is caused by improper input handling that allows injected scripts/HTML to be returned in responses. Public details consistently describe...

6.1CVSS6AI score0.00675EPSS

Exploits1References1Affected Software1

CNVD•added 2018/07/04 12:0 a.m.•2 views

CraftedWeb Cross-Site Scripting Vulnerability

CraftedWeb is a CMS Content Management System for game servers. A cross-site scripting vulnerability exists in the aaspincludes/pages/notice.php file in versions of CraftedWeb prior to 2013-09-24. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the 'e'...

6.1CVSS5.9AI score0.00707EPSS

Exploits1References1

Prion•added 2018/06/27 6:29 p.m.•15 views

Design/Logic Flaw

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...

4.3CVSS6AI score0.00707EPSS

Exploits1References1Affected Software1

NVD•added 2018/06/27 6:29 p.m.•19 views

CVE-2018-12919

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...

6.1CVSS6AI score0.00707EPSS

Exploits1References1

OSV•added 2018/06/27 6:29 p.m.•2 views

CVE-2018-12919

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...

6.1CVSS5.8AI score0.00707EPSS

Exploits1References1

Cvelist•added 2018/06/27 6:0 p.m.•16 views

CVE-2018-12919

In CraftedWeb through 2013-09-24, aaspincludes/pages/notice.php allows XSS via the e parameter...

6.1AI score0.00707EPSS

Exploits1References1

CVE•added 2018/06/27 6:0 p.m.•39 views

CVE-2018-12919

CraftedWeb up to 2013-09-24 is affected by CVE-2018-12919. A cross-site scripting flaw exists in aasp_includes/pages/notice.php that can be triggered through the e parameter, enabling injected script/HTML. CNVD/CVE records confirm the XSS vector (via e) and reference updated CVSS scores (NVD: CVS...

6.1CVSS5.9AI score0.00707EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by