CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2010-2722

Malware in sbrugna...

4.3CVSS6.4AI score0.00545EPSS

Exploits1References9

NVD•added 2010/07/13 6:30 p.m.•7 views

CVE-2010-2718

Multiple cross-site scripting XSS vulnerabilities in CruxSoftware CruxPA 2.00, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 txtusername parameter to login.php, 2 todo parameter to newtodo.php, and unspecified vectors to 3 newtelephone.php and 4...

4.3CVSS5.8AI score0.00545EPSS

Exploits1References8

NVD•added 2010/07/13 6:30 p.m.•11 views

CVE-2010-2717

Cross-site scripting XSS vulnerability in manager/login.php in CruxSoftware CruxCMS 3.0, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the txtusername parameter...

4.3CVSS5.8AI score0.00296EPSS

Exploits1References3

Prion•added 2010/07/13 6:30 p.m.•11 views

Cross site scripting

4.3CVSS6.2AI score0.00296EPSS

Exploits1References3Affected Software1

Prion•added 2010/07/13 6:30 p.m.•6 views

Cross site scripting

4.3CVSS6.2AI score0.00545EPSS

Exploits1References8Affected Software1

Cvelist•added 2010/07/13 6:0 p.m.•11 views

CVE-2010-2718

5.8AI score0.00545EPSS

Exploits1References8

Cvelist•added 2010/07/13 6:0 p.m.•16 views

CVE-2010-2717

5.8AI score0.00296EPSS

Exploits1References3

CVE•added 2010/07/13 6:0 p.m.•35 views

CVE-2010-2718

CruxPA 2.00 (CruxSoftware) is affected by CVE-2010-2718 due to input sanitation failures that enable cross-site scripting. The vulnerabilities are triggered via: (1) txtusername in login.php, (2) todo in newtodo.php, and unspecified vectors in (3) newtelephone.php and (4) newappointment.php. Open...

4.3CVSS5.9AI score0.00545EPSS

Exploits1References8Affected Software1

CVE•added 2010/07/13 6:0 p.m.•41 views

CVE-2010-2717

CruxCMS 3.0 (CruxSoftware) is affected in manager/login.php via the txtusername parameter, enabling Cross-Site Scripting (XSS). The CVE-2010-2717 entry is supported by multiple sources (NVD, OpenVAS NASL, HTBridge) describing an input sanitation flaw that lets remote attackers inject arbitrary sc...

4.3CVSS6AI score0.00296EPSS

Exploits1References3Affected Software1

securityvulns•added 2010/07/11 12:0 a.m.•49 views

XSS vulnerability in CruxPA

Vulnerability ID: HTB22452 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincruxpa3.html Product: CruxPA Vendor: CruxSoftware Vulnerable Version: 2.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor...

0.2AI score

Exploits0

securityvulns•added 2010/07/11 12:0 a.m.•36 views

XSS vulnerability in CruxPA

Vulnerability ID: HTB22449 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincruxpa.html Product: CruxPA Vendor: CruxSoftware Vulnerable Version: 2.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor...

0.2AI score

Exploits0

securityvulns•added 2010/07/11 12:0 a.m.•38 views

XSS vulnerability in CruxPA

Vulnerability ID: HTB22450 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincruxpa1.html Product: CruxPA Vendor: CruxSoftware Vulnerable Version: 2.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor...

0.4AI score

Exploits0

Packet Storm•added 2010/07/08 12:0 a.m.•31 views

CruxPA 2.00 Cross Site Scripting

================================================ Vulnerability ID: HTB22452 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincruxpa3.html Product: CruxPA Vendor: CruxSoftware Vulnerable Version: 2.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by