Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:57 a.m.9 views

CVE-2023-3506

A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input leads to cross sit...

6.1CVSS6.3AI score0.003EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:24 a.m.6 views

CVE-2022-47073

A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...

5.4CVSS5.8AI score0.00617EPSS
Exploits0References1
OSV
OSV
added 2023/07/04 4:15 p.m.2 views

CVE-2023-3506

A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...

6.1CVSS3.8AI score0.003EPSS
Exploits0References2
NVD
NVD
added 2023/07/04 4:15 p.m.14 views

CVE-2023-3506

A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...

6.1CVSS4.6AI score0.003EPSS
Exploits0References2
Prion
Prion
added 2023/07/04 4:15 p.m.18 views

Cross site scripting

A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/supportticket of the component Create Ticket Page. The manipulation of the argument details with the input alert1 leads to...

4CVSS6.1AI score0.003EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/01/26 9:18 p.m.1 views

CVE-2022-47073

A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...

5.4CVSS5.9AI score0.00617EPSS
Exploits0References2
Prion
Prion
added 2023/01/26 9:18 p.m.16 views

Cross site scripting

A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...

4.9CVSS5.3AI score0.00617EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/01/26 12:0 a.m.4 views

Small CRM 跨站脚本漏洞

PHPGurukul Small CRM is a customer relationship management system. A security vulnerability exists in Small CRM v3.0, which stems from the Subject parameter of its Create Ticket page that allows an attacker to inject a crafted payload to execute arbitrary web script and HTML...

5.4CVSS6.1AI score0.00617EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/01/25 12:0 a.m.6 views

CVE-2022-47073

A cross-site scripting XSS vulnerability in the Create Ticket page of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter...

5.9AI score0.00617EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/01/25 12:0 a.m.3 views

PT-2023-15153 · Small Crm · Small Crm

Name of the Vulnerable Software and Affected Versions: Small CRM version 3.0 Description: A cross-site scripting XSS issue in the Create Ticket page allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject parameter. This enables attackers to...

5.4CVSS6.3AI score0.00617EPSS
Exploits0References7
Rows per page
Query Builder