CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

6.1CVSS5.6AI score0.00638EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 9:56 a.m.•3 views

CVE-2011-5158

Multiple untrusted search path vulnerabilities in the DMTGUI2.EXE and DvInesLogFileViewer.Exe components in DATEV Grundpaket Basis CD23.20 allow local users to gain privileges via a Trojan horse 1 DVBSKNLANG101.dll or 2 DvZediTermSrvInfo004.dll file in the current working directory, as demonstrat...

9.3CVSS7.1AI score0.00368EPSS

Exploits1References1

OSV•added 2023/06/22 11:15 a.m.•0 views

CVE-2023-33387

6.1CVSS6.3AI score

Exploits0References3

NVD•added 2023/06/22 11:15 a.m.•5 views

CVE-2023-33387

6.1CVSS5.9AI score0.00638EPSS

Exploits0References3

Prion•added 2023/06/22 11:15 a.m.•9 views

Cross site scripting

5.8CVSS5.8AI score0.00638EPSS

Exploits0References3Affected Software1

CNNVD•added 2023/06/22 12:0 a.m.•1 views

DATEV eG Personal-Management System 跨站脚本漏洞

DATEV eG Personal-Management System is a personnel management system from DATEV, Inc. A security vulnerability exists in DATEV eG Personal-Management System Comfort/Comfort Plus versions v15.1.0 through v16.1.1. An attacker could exploit the vulnerability by sending a specially crafted link to...

6.1CVSS6.3AI score0.00638EPSS

Exploits0References4

Vulnrichment•added 2023/06/22 12:0 a.m.•5 views

CVE-2023-33387

5.7AI score0.00638EPSS

Exploits0References3

Positive Technologies•added 2023/06/22 12:0 a.m.•1 views

PT-2023-24328 · Datev Eg · Datev Eg Personal-Management System Comfort/Comfort Plus

Name of the Vulnerable Software and Affected Versions: DATEV eG Personal-Management System Comfort/Comfort Plus versions 15.1.0 through 16.1.1 P4 Description: A reflected cross-site scripting issue allows attackers to steal targeted users' login data by sending a crafted link. Recommendations: Fo...

6.1CVSS6.1AI score0.00638EPSS

Exploits0References4

Cvelist•added 2023/06/22 12:0 a.m.•11 views

CVE-2023-33387

6AI score0.00638EPSS

Exploits0References3

CVE•added 2023/06/22 12:0 a.m.•27 views

CVE-2023-33387

CVE-2023-33387 is a reflected cross-site scripting (XSS) vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus, affected versions 15.1.0 through 16.1.1 P4. The flaw enables an attacker to steal targeted users’ login data by enticing them to click a crafted link. The CVE has a ...

6.1CVSS5.8AI score0.00638EPSS

Exploits0References3Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•17 views

DATEV Nutzungskontrolle 2.1/2.2 Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8950/info It has been reported that DATEV Nutzungskontrolle may be prone to a access validation issue that may allow a local attacker to gain access to sensitive data. The issue presents itself as a local user is able...

7.1AI score

Exploits0

NVD•added 2012/09/07 10:32 a.m.•8 views

CVE-2011-5158

9.3CVSS6.8AI score0.00368EPSS

Exploits1References2

Prion•added 2012/09/07 10:32 a.m.•14 views

Design/Logic Flaw

9.3CVSS7.2AI score0.00368EPSS

Exploits1References2Affected Software1

ATTACKERKB•added 2012/09/07 10:32 a.m.•1 views

CVE-2011-5158

9.3CVSS5.6AI score0.00368EPSS

Exploits1References3

Cvelist•added 2012/09/07 10:0 a.m.•11 views

CVE-2011-5158

6.8AI score0.00368EPSS

Exploits1References2

CVE•added 2012/09/07 10:0 a.m.•34 views

CVE-2011-5158

Multiple untrusted search path vulnerabilities affect DATEV Grundpaket Basis CD23.20, specifically the DMTGUI2.EXE and DvInesLogFileViewer.Exe components. The issue allows local privilege escalation via a Trojan horse mechanism using one of two DLLs in the current working directory: DVBSKNLANG101...

9.3CVSS6.9AI score0.00368EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by