Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-44389

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00317EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/02 10:45 a.m.2 views

CVE-2025-40991 Stored XSS in Creativeitem Ekushey CRM

Stored Cross Site Scripting vulnerability in Ekushey CRM v5.0 by Creativeitem, due to lack of proper validation of user inputs via the "/ekushey/index.php/client/projectfile/upload/xxxx", affecting to "description" parameter via POST. This vulnerability could allow a remote attacker to send a...

5.1CVSS5.7AI score0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/02 10:40 a.m.7 views

CVE-2025-40989 Stored XSS in Creativeitem Ekushey CRM

Stored Cross Site Scripting vulnerability in Ekushey CRM v5.0 by Creativeitem, due to lack of proper validation of user inputs via the "/ekushey/index.php/client/projectmessage/add/xxx", affecting to "message" parameter via POST. This vulnerability could allow a remote attacker to send a speciall...

5.1CVSS0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/02 10:40 a.m.3 views

CVE-2025-40989 Stored XSS in Creativeitem Ekushey CRM

Stored Cross Site Scripting vulnerability in Ekushey CRM v5.0 by Creativeitem, due to lack of proper validation of user inputs via the "/ekushey/index.php/client/projectmessage/add/xxx", affecting to "message" parameter via POST. This vulnerability could allow a remote attacker to send a speciall...

5.1CVSS5.7AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.6 views

Creativeitem Ekushey CRM 跨站脚本漏洞

Creativeitem Ekushey CRM is an open source project management script by Creativeitem. A cross-site scripting vulnerability exists in Creativeitem Ekushey CRM that stems from insufficient validation of user input and could lead to a stored cross-site scripting attack...

5.1CVSS5.8AI score0.00333EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.4 views

Creativeitem Ekushey CRM 跨站脚本漏洞

Creativeitem Ekushey CRM is an open source project management script from Creativeitem. A cross-site scripting vulnerability exists in Creativeitem Ekushey CRM version 5.0, which stems from a lack of user input validation and could lead to a stored cross-site scripting attack...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.7 views

Creativeitem Ekushey CRM 跨站脚本漏洞

Creativeitem Ekushey CRM is an open source project management script from Creativeitem. A cross-site scripting vulnerability exists in Creativeitem Ekushey CRM version 5.0, which stems from a lack of input validation for the title and description parameters and could lead to a stored cross-site...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.20 views

Creativeitem Ekushey CRM 跨站脚本漏洞

Creativeitem Ekushey CRM is an open source project management script from Creativeitem. A cross-site scripting vulnerability exists in Creativeitem Ekushey CRM version 5.0, which stems from a lack of user input validation and could lead to a stored cross-site scripting attack...

5.4CVSS5.9AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.6 views

CVE-2023-3754

A vulnerability, which was classified as problematic, was found in Creativeitem Ekushey Project Manager CRM 5.0. Affected is an unknown function of the file /index.php/client/message/messageread/xxxxxxxxrandom-msg-hash. The manipulation of the argument message leads to cross site scripting. It is...

6.1CVSS6.2AI score0.00317EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/09/07 2:36 a.m.4 views

SUSE CVE-2023-3754

A vulnerability, which was classified as problematic, was found in Creativeitem Ekushey Project Manager CRM 5.0. Affected is an unknown function of the file /index.php/client/message/messageread/xxxxxxxxrandom-msg-hash. The manipulation of the argument message leads to cross site scripting. It is...

6.1CVSS4.4AI score0.00317EPSS
Exploits0References3
OSV
OSV
added 2023/07/19 3:15 a.m.3 views

CVE-2023-3754

A vulnerability, which was classified as problematic, was found in Creativeitem Ekushey Project Manager CRM 5.0. Affected is an unknown function of the file /index.php/client/message/messageread/xxxxxxxxrandom-msg-hash. The manipulation of the argument message leads to cross site scripting. It is...

6.1CVSS4.1AI score
Exploits0References2
Prion
Prion
added 2023/07/19 3:15 a.m.17 views

Cross site scripting

A vulnerability, which was classified as problematic, was found in Creativeitem Ekushey Project Manager CRM 5.0. Affected is an unknown function of the file /index.php/client/message/messageread/xxxxxxxxrandom-msg-hash. The manipulation of the argument message leads to cross site scripting. It is...

4CVSS6AI score0.00317EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/19 3:0 a.m.21 views

CVE-2023-3754 Creativeitem Ekushey Project Manager CRM xxxxxxxx[random-msg-hash] cross site scripting

A vulnerability, which was classified as problematic, was found in Creativeitem Ekushey Project Manager CRM 5.0. Affected is an unknown function of the file /index.php/client/message/messageread/xxxxxxxxrandom-msg-hash. The manipulation of the argument message leads to cross site scripting. It is...

4CVSS6.2AI score0.00317EPSS
Exploits0References2
CVE
CVE
added 2023/07/19 3:0 a.m.54 views

CVE-2023-3754

CVE-2023-3754 affects Creativeitem Ekushey Project Manager CRM 5.0. A cross-site scripting vulnerability exists in an unknown function of the file /index.php/client/message/message_read/xxxxxxxx[random-msg-hash], where manipulating the message parameter enables remote XSS. The primary documents d...

6.1CVSS4.8AI score0.00317EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder