CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2026/05/10 3:31 p.m.•7 views

EUVD-2022-55987

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests...

6.1CVSS5.7AI score0.00042EPSS

Exploits0References5

ATTACKERKB•added 2026/05/10 12:13 p.m.•3 views

CVE-2022-50968

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET reques...

6.1CVSS5.7AI score0.00042EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/05/10 12:12 p.m.•30 views

CVE-2022-50966 uBidAuction 2.0.1 news manage Reflected XSS

6.1CVSS0.00042EPSS

Exploits0References4

Cvelist•added 2026/05/10 12:12 p.m.•27 views

CVE-2022-50962 uBidAuction 2.0.1 myOrders Reflected XSS

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET reques...

6.1CVSS0.00042EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by