Lucene search
K

2755 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1755

Malware in sbrugna...

6.1CVSS6.3AI score0.00636EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-17145

Malware in sbrugna...

6.1CVSS6.2AI score0.02721EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-54902

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00618EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53502

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00336EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34635

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.01173EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2940

Malicious code in bioql PyPI...

6.1CVSS6.8AI score0.00503EPSS
Exploits1References4
NVD
NVD
added 2025/08/07 1:15 a.m.7 views

CVE-2025-54783

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions 7.14.6 and below have a Reflected Cross-Site Scripting XSS vulnerability. This vulnerability allows an attacker to execute JavaScript code by modifying the HTTP Referer header to inclu...

6.1CVSS0.002EPSS
Exploits0References2
CVE
CVE
added 2025/07/23 5:33 p.m.27 views

CVE-2025-4700

GitLab CVE-2025-4700 affects GitLab CE/EE versions 15.10–18.0.4, 18.1.x before 18.1.3, and 18.2.x before 18.2.1. The issue could allow an attacker to trigger unintended content rendering that leads to Cross-site Scripting (XSS) under certain conditions. The provided documents do not specify the v...

8.7CVSS5.9AI score0.00222EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2025/07/21 1:45 a.m.7 views

WordPress ThemeREX Addons plugin <= 2.35.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trx_addons_get_svg_from_file Function vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via trxaddonsgetsvgfromfile Function vulnerability discovered by stealthcopter in WordPress Plugin ThemeREX Addons versions = 2.35.1.1...

6.4CVSS5.5AI score0.00205EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/07/20 4:15 a.m.7 views

CVE-2025-7865

A vulnerability was found in thinkgem JeeSite up to 5.12.0. It has been declared as problematic. This vulnerability affects the function xssFilter of the file src/main/java/com/jeesite/common/codec/EncodeUtils.java of the component XSS Filter. The manipulation of the argument text leads to cross...

5.4CVSS0.00304EPSS
Exploits1References6
NVD
NVD
added 2025/07/18 9:15 p.m.6 views

CVE-2025-50581

MRCMS v3.1.2 was discovered to contain a cross-site scripting XSS vulnerability via the component /admin/group/save.do...

4.8CVSS0.00188EPSS
Exploits1References2
Patchstack
Patchstack
added 2025/07/16 12:13 p.m.24 views

WordPress Videopack plugin <= 4.10.3 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by 63n0 in WordPress Plugin Videopack versions = 4.10.3...

6.5CVSS6AI score0.00165EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/07/14 8:47 p.m.19 views

CVE-2025-53820

WeGIA is an open-source web manager for welfare organizations. A reflected Cross‑Site Scripting (XSS) vulnerability exists in the index.php endpoint before version 3.4.5, exploitable via the erro parameter due to insufficient input escaping/validation. Impact is described as user-injected script ...

6.5CVSS5.9AI score0.0024EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/03 12:0 a.m.4 views

PT-2025-27807 · Mediawiki +1 · Mediawiki +1

Name of the Vulnerable Software and Affected Versions: Mediawiki - GoogleDocs4MW Extension versions 1.42.X through 1.42.6 Mediawiki - GoogleDocs4MW Extension versions 1.43.X through 1.43.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known...

5.6CVSS5.6AI score0.00219EPSS
Exploits0References5
CVE
CVE
added 2025/06/27 11:52 a.m.19 views

CVE-2025-27361

CVE-2025-27361 concerns the WordPress plugin “Photo Express for Google” (thhake) with versions

7.1CVSS5.9AI score0.00222EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/06/26 11:59 a.m.6 views

WordPress SB Breadcrumbs plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin SB Breadcrumbs versions = 1.0...

7.1CVSS5.9AI score0.00222EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/06/10 11:15 p.m.6 views

CVE-2025-46910

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00275EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 10:18 p.m.8 views

CVE-2025-47113 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS0.00247EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 10:18 p.m.54 views

CVE-2025-47055

Adobe Experience Manager 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields. A low-privileged attacker can inject malicious JavaScript that may execute in a victim’s browser when visiting a page containing the field. The CVE is documente...

5.4CVSS5AI score0.00279EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/09 3:56 p.m.3 views

CVE-2025-31638 WordPress Spare <= 1.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in themeton Spare allows Reflected XSS. This issue affects Spare: from n/a through 1.7...

7.1CVSS6.9AI score0.00235EPSS
Exploits0References1
Rows per page
Query Builder